VDE-2025-021
May 14, 2025, 3:26 PM
Weidmüller product PROCON-WIN is affected by hard-coded credentials. Weidmüller has released a new version of the affected product to fix the vulnerability.
VDE-2025-023
March 5, 2025, 12:00 PM
Multiple Weidmueller products are affected by an OpenSSL vulnerability. Weidmüller has released new firmwares of the affected products to fix the vulnerability.
VDE-2025-012
May 22, 2025, 3:03 PM
A security researcher discovered a critical Remote Code Execution vulnerability in sunnyportal.com. An attacker could upload code instead of an image and remotely execute this code.
VDE-2025-002
May 22, 2025, 3:03 PM
An unauthenticated attacker could repeatedly send IPv6 packets, that include specially crafted packets, to a Windows machine which could enable remote code execution.
VDE-2025-008
May 14, 2025, 3:00 PM
The following firmware versions installed on several devices are are vulnerable due to a vulnerability in CODESYS Control.
VDE-2025-009
May 14, 2025, 2:28 PM
Several WAGO Firmwares are vulnerable to an incorrect calculation of the buffer size in the CODESYS OPC UA STACK. This can lead to a crash of the runtime of the …
VDE-2024-020
Feb. 12, 2025, 5:48 PM
A security researcher discovered a Cross Site Request Forgery (CSRF, XSRF) vulnerability in SMA Cluster Controller. The affected products are out of support (End-of-Life 2018-06-30).
VDE-2024-075
June 17, 2025, 8:00 AM
A security researcher discovered that in the affected products a clickjacking vulnerability in the web frontend exists. An attacker could lure the user to click on a malicious website which …