VDE-2024-039
Aug. 27, 2025, 12:00 PM
Confidential data in HTTP query string of user requests. Incomplete sanitation of user input in administrative web interface.
VDE-2024-052
May 14, 2025, 3:00 PM
The pathfinder TCP encapsulation service is vulnerable to a drain of open file descriptors.
VDE-2024-022
Aug. 27, 2025, 12:00 PM
Start sequence for firewall service allows attack during the boot process. Password is reset to default when the device undergoes a firmware upgrade.
VDE-2024-029
June 11, 2024, 8:00 AM
The OpenSSL library used in the affected products is vulnerable to an unbounded growth of the session cache in the TLSv1.3 implementation.
VDE-2024-019
May 14, 2024, 8:00 AM
Multiple vulnerabilities have been discovered in the Firmware of CHARX SEC charge controllers. Update: credis have been updated
VDE-2024-011
March 12, 2024, 8:00 AM
Multiple vulnerabilities have been discovered in the Firmware of CHARX SEC charge controllers. These vulnerabilities were discovered as part of a PWN2OWN competition initiated by Trend Micro Zero Day Initiative …
VDE-2023-058
May 22, 2025, 3:03 PM
PLCnext Control provides authentication and integrity check for the application.An authenticated, skilled attacker might be able to manipulate the application (e.g.: logic files, executable logic, configurations) in a special crafted …
VDE-2023-056
May 22, 2025, 3:03 PM
PLCnext Control provides authentication and integrity check for the application.An authenticated, skilled attacker might be able to manipulate the application (e.g.: logic files, executable logic, configurations) in a special crafted …