Advisories

Show filters filter

Manufacturer

Scoring

For CVSS 2.0, 3.0 and 3.2

No CVE available

0.1 - 3.9

4 - 6.9

7 - 8.9

9 - 10

VDE-2019-009

May 22, 2025, 3:03 PM

PHOENIX CONTACT: Multiple Vulnerabilities in AXC F 2152

Multiple vulnerabilities have been identified in PHOENIX CONTACT AXC F 2152 with firmware versions 1.x

CVE-2017-8817

CVE-2017-8816

CVE-2017-5337

CVE-2017-5336

CVE-2017-5334

CVE-2017-11543

CVE-2017-11542

CVE-2017-11541

CVE-2016-9953

CVE-2016-9843

CVE-2016-9841

CVE-2018-1000120

CVE-2018-1000005

CVE-2018-1000122

CVE-2017-1000257

CVE-2018-1000301

CVE-2016-9842

CVE-2016-9840

CVE-2016-9952

CVE-2016-1247

CVE-2017-9023

CVE-2017-9022

CVE-2017-5335

CVE-2017-9233

CVE-2017-3731

CVE-2017-11185

CVE-2017-11108

CVE-2017-1000254

CVE-2018-1000121

CVE-2016-7444

CVE-2016-7141

CVE-2016-6301

CVE-2019-10998

CVE-2018-1000117

CVE-2018-5388

CVE-2017-1000101

CVE-2017-1000100

CVE-2015-9251

CVE-2016-7103

CVE-2019-10997

CVE-2018-0737

CVE-2017-3738

CVE-2017-3737

CVE-2017-3735

CVE-2018-7559

CVE-2017-15906

VDE-2021-052

May 22, 2025, 3:03 PM

PHOENIX CONTACT: PC Worx/-Express prone to improper input validation vulnerability

PC Worx / -Express is vulnerable to a 'zip slip' style vulnerability when loading a project file.

CVE-2021-34597

VDE-2024-047

May 22, 2025, 3:03 PM

WAGO: Multiple vulnerabilities in docker configuration

Nozomi reported eight vulnerabilities to WAGO affecting different firmwares installed on several devices.

CVE-2024-41969

CVE-2024-41973

CVE-2024-41971

CVE-2024-41967

CVE-2024-41974

CVE-2024-41972

CVE-2024-41970

CVE-2024-41968

VDE-2020-026

May 22, 2025, 3:03 PM

PHOENIX CONTACT: Denial-of-Service vulnerabilty in Emalytics, ILC 2050 BI and ILC 2050 BI-L

A timeout during a TLS handshake can result in the connection failing to terminate. This can result in a Niagara thread hanging and requires a manual restart to correct.

CVE-2020-14483

VDE-2022-051

May 22, 2025, 3:03 PM

PHOENIX CONTACT: Denial-of-Service vulnerability in mGuard product family

A denial of service of the HTTPS management interface of PHOENIX CONTACT FL MGUARD and TC MGUARD devices can be triggered by a larger number of unauthenticated HTTPS connections originating …

CVE-2022-3480

VDE-2020-005

May 22, 2025, 3:03 PM

Beckhoff: BK9000 couplers - Denial of service inhibits function

The coupler's function could be inhibited by an attack.

CVE-2020-9464

VDE-2022-045

May 22, 2025, 3:03 PM

Pilz: PAS 4000 prone to ZipSlip

PAS4000 is the software platform for the Automation System PSS 4000. PAS 4000 does not properly check pathnames contained in archives. An attacker can utilise this vulnerability to write arbitrary …

CVE-2018-1002202

CVE-2022-40976

VDE-2020-012

May 22, 2025, 3:03 PM

PHOENIX CONTACT: Local Privilege Escalation in PC WORX SRT

The Phoenix Contact application 'PC WORX SRT' is installed as service. The installation path of the application is configured to have insecure permissions which allows any unprivileged user to write …

CVE-2020-10939