Multiple vulnerabilities in all mbNET.mini devices with firmware <= 2.3.2 that allow an attacker to gain full control over the device.



Multiple vulnerabilities in the PLCnext system allowed low-privileged remote attackers to gain unauthorized access or trigger system reboots by manipulating configuration files and symbolic links. Affected services include watchdog, arp-preinit, and security-profile, potentially exposing critical system files. These issues have been resolved in firmware version 2025.0.2.



Multiple vulnerabilities in the firmware of CHARX SEC-3xxx charging controllers have been discovered.



Multiple vulnerabilities in the firmware of CHARX SEC-3xxx charging controllers have been discovered.

Update Version 1.1.0: Updated the reporting credits for CVE-2025-25271.



Frauscher Sensortechnik FDS101, FDS-SNMP101 and FDS102 for FAdC/FAdCi R2 and all previous versions are vulnerable to OS Command Injection via malicious configuration file.

CVE-2025-3626 affects FDS102 versions v2.8.0 < v2.13.3.

CVE-2025-3705 affects a broader range of products and versions. Specifically, it affects:

  • FDS102 versions < v2.13.3
  • FDS101 versions <= v1.4.25
  • FDS-SNMP101 versions <= v.2.3.9

Update 1.1.0, 29.07.2025: The summary has been updated to include a mapping between CVEs and affected products, and the remediation section has been revised to include FDS101.



WAGO: Vulnerability in WAGO Device Sphere

During installation, identical certificates are installed across all systems instead of unique ones, which are intended for JWT Token encryption and signing.



Feeds

By Vendor

Archive

2025
2024
2023
2022
2021
2020
2019
2018
2017

Legend

(Scoring for CVSS 2.0,3.0+3.1)
None
No CVE available
Low
0.1 <= 3.9
Medium
4.0 <= 6.9
High
7.0 <= 8.9
Critical
9.0 <= 10.0