VDE-2024-031
May 14, 2025, 3:00 PM
The data24 service that is bundled with every installation of myREX24 V2/myREX24.virtual has two serious flaws in core components. These combined can lead to a complete loss of confidentiality, integrity …
VDE-2024-069
March 6, 2026, 9:00 AM
Multiple vulnerabilities have been discovered in Helmholz products that could allow RCE or unauthorized file access. CVE-2024-45272 affects the myREX24V2 and myREX24V2.virtual products. CVE-2024-45273 affects the REX 200/REX 250, myREX24V2, …
VDE-2024-066
Aug. 27, 2025, 12:00 PM
Multiple vulnerabilities have been discovered in REX100 allowing for RCE or unauthorized file access.
VDE-2024-044
May 14, 2025, 2:28 PM
Several Helmholz products are vulnerable to a possible race condition vulnerability in OpenSSH named "regreSSHion".
VDE-2024-032
July 3, 2024, 3:33 PM
There exists a vulnerability in all REX 100 devices with firmware <= 2.2.11 that allows an authenticated attacker to execute arbitrary system commands via GET requests. Update: 03.07.2024 3:30pm …
VDE-2023-043
Oct. 16, 2023, 10:38 AM
A vulnerability in the affected products allows an authenticated, low-privileged attacker to gain unauthorized read access to limited, non-critical device information. The issue arises from improper access validation.
VDE-2023-029
Aug. 17, 2023, 2:00 PM
A stored XXS vulnerability has been found in REX 200 and REX 250 in all versions before 7.3.2.
VDE-2023-008
May 15, 2023, 2:06 PM
Two vulnerabilites have been discovered in myREX24 and myREX24.virtual in all versions through 2.13.3.