VDE-2018-006
May 14, 2025, 3:00 PM
An attacker may insert a carefully crafted cookie into a GET menu_pxc.cgi or GET index.cgi request to cause a buffer overflow that can initiate a Denial of Service attack and …
VDE-2022-013
May 14, 2025, 3:00 PM
FL MGUARD and TC MGUARD devices are affected by a possible infinite loop within a OpenSSL library method for parsing elliptic curve parameters. This method is used on parsing cryptographic …
VDE-2022-028
May 14, 2025, 3:00 PM
PHOENIX CONTACT: Missing Authentication in ProConOS/ProConOS eCLR SDK and MULTIPROG Engineering tool
ProConOS/ProConOS eCLR designed for use in closed industrial networks provide communication protocols without authentication. Please also refer the original ICS-CERT advisory ICSA-15-013-03 published 13 January 2015.
VDE-2024-024
May 14, 2025, 3:00 PM
Local attackers can cause affected CODESYS Development System V2.3 installations to crash or execute code by opening malicious project files. The CODESYS Development System V2.3 is an IEC 61131-3 programming …
VDE-2023-003
May 14, 2025, 3:00 PM
Multiple vulnerabilities have been discovered in CODESYS Control V3 runtime system. For details regarding the single vulnerabilities please refer to the security advisories issued by CODESYS: - CODESYS Security Advisory …
VDE-2022-058
May 14, 2025, 3:00 PM
Two vulnerabilities have been discovered in the Expat XML parser library (aka libexpat). This open-source component is widely used in a lot of products worldwide. An attacker could cause a …
VDE-2019-001
May 14, 2025, 3:00 PM
Multiple vulnerabilities for FL SWITCH have been identified in PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx version 1.0 to 1.34.
VDE-2020-036
May 14, 2025, 3:00 PM
Multiple vulnerabilities in the WAGO I/O-Check Service were reported.