VDE-2025-011
Aug. 27, 2025, 12:00 PM
A stored cross-site scripting vulnerability has been discovered in the profinet gateway LB8122A.1.EL. An attacker can write an HTML tag with up to 32 characters in the message field of …
VDE-2025-002
May 22, 2025, 3:03 PM
An unauthenticated attacker could repeatedly send IPv6 packets, that include specially crafted packets, to a Windows machine which could enable remote code execution.
VDE-2024-065
May 14, 2025, 2:28 PM
A vulnerability in the use of hard-coded Platform Keys (PK) within the UEFI framework, known as PKfail, has been discovered in several Pepperl+Fuchs devices.
VDE-2024-063
May 14, 2025, 2:28 PM
The affected devices run a SSH server that is affected by the regreSSHion vulnerability despite the fact that no user can actually log in through SSH. Attackers may exploit this …
VDE-2024-033
May 14, 2025, 4:34 PM
Vulnerabilities have been discovered in the product, mainly caused by HTML injection and crosssite-scripting. The impact of the vulnerability on the affected device may result in an information disclosure and …
VDE-2024-038
Aug. 27, 2025, 12:00 PM
Pepperl+Fuchs: Anonymous FTP server and Telnet access allows information disclosure and manipulation
Critical vulnerabilities has been discovered in the product, mainly caused by ananonymous FTP server and Telnet access.The impact of the vulnerabilities on the affected device may result in Information disclosure …
VDE-2024-037
July 10, 2024, 8:00 AM
A critical security vulnerability was discovered in the products, which is caused by the IPv6 stack in the Linux kernel.The impact of the vulnerability on the affected products may result …
VDE-2024-017
May 22, 2025, 3:03 PM
Critical vulnerabilities have been discovered in the product due to outdated software components.The impact of the vulnerabilities on the affected device may result in Denial of service Bypassing of authentication …