VDE-2019-014
May 14, 2025, 2:28 PM
A manipulated PC Worx or Config+ project file could lead to a remote code execution.\ The attacker needs to get access to an original PC Worx or Config+ project file …
VDE-2019-009
May 22, 2025, 3:03 PM
Multiple vulnerabilities have been identified in PHOENIX CONTACT AXC F 2152 with firmware versions 1.x
VDE-2019-007
May 14, 2025, 2:28 PM
A WebHMI utility may be exploited by any logged in user allowing the execution of arbitrary OS commands on the server. This provides the opportunity for a command injection attack.
VDE-2019-006
May 14, 2025, 2:28 PM
After login the source IP is used as the session identifier, so that users sharing the same source IP are able to gain full authenticated access to the WEB-UI. The …
VDE-2019-003
May 14, 2025, 3:00 PM
Multiple vulnerabilities for MEVIEW3 have been identified in PHOENIX CONTACT MEVIEW3, versions below 3.14.25 and 3.15.18
VDE-2019-001
May 14, 2025, 3:00 PM
Multiple vulnerabilities for FL SWITCH have been identified in PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx version 1.0 to 1.34.
VDE-2018-015
Sept. 21, 2018, 9:03 AM
Incorrect handling request with non-standard symbols allows remote attackers to initiate a complete lock up of the bus coupler. Authentication of the request is not required.
VDE-2018-012
Aug. 13, 2018, 1:55 PM
The processing program of the IEC 61131 program can be slowed down or stopped completely by creating a large amount of network traffic that needs to be handled by the …