VDE-2025-075
Sept. 9, 2025, 12:00 PM
Beckhoff's TwinCAT 3 Engineering software is intented to craft automation projects consisting of a set of files which are stored locally as files underneath an individual folder or in a …
VDE-2025-064
Sept. 9, 2025, 9:00 AM
A local privilege escalation vulnerability in Phoenix Contact products utilizing WIBU-SYSTEMS CodeMeter Runtime allows users to gain admin rights on freshly installed systems. The CodeMeter Control Center starts with elevated …
VDE-2025-048
Sept. 8, 2025, 9:00 AM
A design flaw in the file system management exposes internal system partitions - intended to be hidden - during brief moments when they are mounted by the firmware. These partitions …
VDE-2025-061
Sept. 8, 2025, 9:00 AM
Bender is publishing this advisory to inform customers about a security vulnerability in the Charge Controller product families. Bender has analyzed the weakness and determined that the electrical safety of …
VDE-2025-082
Sept. 8, 2025, 9:00 AM
A vulnerability in sudo allows a low privileged attacker to execute commands with root rights.
VDE-2025-084
Sept. 8, 2025, 9:00 AM
Bender is publishing this advisory to inform customers about a security vulnerability in the Charge Controller product families. Bender has analyzed the weakness and determined that the electrical safety of …
VDE-2025-066
Aug. 27, 2025, 10:00 AM
A security researcher discovered a Directory Traversal vulnerability in Sunny Boy 3, which allows remote attackers to access sensitive information. The vulnerability is already fixed since January 2021 with version …
VDE-2025-076
Aug. 26, 2025, 9:00 AM
A hard-coded JWT secret in the egOS WebGUI backend is readable to the default user, allowing attackers to forge valid tokens and access protected API endpoints.