Advisories | CERT@VDE

1
2 (current)

2022-09-07 12:54 VDE-2022-017

Helmholz: Unauthenticated user enumeration in myREX24 and myREX24.virtual

An issue was discovered in myREX24 and myREX24.virtual in all versions through 2.11.2.

more ...

CVE-2022-22520: 5.3

2021-12-08 13:04 VDE-2021-058

Helmholz: Remote user enumeration in myREX24/myREX24-virtual

An issue was discovered in the myREX24 and myREX24-virtual software in all versions through V2.9.0.

more ...

CVE-2021-34580: 7.5

2021-12-08 13:03 VDE-2021-057

Helmholz: Privilege Escalation in shDialup (Update A)

Multiple Vulnerabilities in a software service of shDIALUP can lead to arbitrary code execution due to improper privilege management.

Update A, 2022-03-28

Updated CVSS score from CVE-2021-33527 from 7.8 to 9.8 due to new information about the vulnerability

more ...

CVE-2021-33527: 9.8

CVE-2021-33526: 7.8

1
2 (current)

Feeds

RSS / Atom

By Vendor

ADS-TEC Industrial IT (2)

Auma (4)

Beckhoff (14)

Bender (2)

CODESYS (13)

Endress+Hauser (12)

Festo (11)

Festo Didactic (7)

Frauscher (3)

Carlo Gavazzi Controls (1)

Helmholz (11)

HIMA (2)

ifm (3)

Innominate (2)

Lenze (3)

MB connect line (11)

Miele (4)

M&M Software (1)

Pepperl+Fuchs (30)

PHOENIX CONTACT (87)

Pilz (13)

Red Lion Europe (4)

SWARCO (1)

TECSON/GOK (1)

TRUMPF SE (4)

TRUMPF Laser (7)

TRUMPF Werkzeugmaschinen (8)

VARTA Storage (1)

VMT (1)

WAGO (58)

Weidmueller (10)

Welotec (3)

Wiesemann & Theis (3)

Legend

(Scoring for CVSS 2.0,3.0+3.1)

None

No CVE available

Low

0.1 <= 3.9

Medium

4.0 <= 6.9

High

7.0 <= 8.9

Critical

9.0 <= 10.0

Helmholz: Unauthenticated user enumeration in myREX24 and myREX24.virtual

Helmholz: Remote user enumeration in myREX24/myREX24-virtual

Helmholz: Privilege Escalation in shDialup (Update A)

Feeds

By Vendor

Archive

2024

2023

2022

2021

2020

2019

2018

2017

Legend