VDE-2021-026
May 14, 2025, 3:00 PM
Multiple issues in Weidmueller Industrial WLAN devices have been found. Initial publication date: 2021-06-23 Update A publication date: 2021-07-02 Update A CVE-2021-33534 CVSS: 7.2 (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H) Description: An exploitable command injection …
VDE-2021-014
May 22, 2025, 3:03 PM
Multiple vulnerabilities were reported in CODESYS 2.3 Runtime. The CODESYS 2.3 Runtime is an essential component in several WAGO PLC's.
VDE-2021-010
May 14, 2025, 2:28 PM
Endress+Hauser products utilizing WPA2 are vulnerable to KRACK attacks. Proline portfolio is a flow meter with an optional WLAN interface in the display. The flowmeters are only affected if the …
VDE-2021-018
May 12, 2021, 10:57 AM
Critical vulnerability has been discovered in the utilized components rcX, mbedTLS, PROFINET IO Device and EtherNet/IP Core by Hilscher Gesellschaft für Systemautomation mbH. The impact of the vulnerabilities on the …
VDE-2021-013
May 14, 2025, 2:28 PM
The Web-Based Management (WBM) of WAGOs industrial managed switches is typically used for administration, commissioning and updates. The reported vulnerabilities allow an attacker with access to the device and the …
VDE-2021-016
May 14, 2025, 2:28 PM
A network port intended only for device-internal usage is accidentally accessible via external network interfaces.
VDE-2021-024
May 14, 2025, 2:28 PM
The vulnerability is a Time-of-Check-Time-of-Use (CWE-367) issue which allows an attacker with access to the firmware update file to overwrite it after it has been verified (but before installation is …
VDE-2020-051
May 11, 2021, 12:00 PM
Some TwinCAT OPC UA Server and IPC Diagnostics UA Server versions from Beckhoff Automation GmbH & Co. KG are vulnerable to denial of service attacks. The attacker needs to send …