VDE-2024-068
May 14, 2025, 2:28 PM
Multiple vulnerabilities have been discovered in MB connect line products that could allow RCE or unauthorized file access. CVE-2024-45272 affects the mbCONNECT24 and mymbCONNECT24 products, while CVE-2024-45273 affects the mbNET/mbNET.rokey, …
VDE-2024-067
May 14, 2025, 3:00 PM
Vulnerabilities in .NET and Visual Studio functions System.Text.Json, System.Formats.Asn1, OPCFoundation.NetStandard.Opc.Ua.Core allow an remote attacker to execute a Denial-of-Servce attack.
VDE-2024-063
May 14, 2025, 2:28 PM
The affected devices run a SSH server that is affected by the regreSSHion vulnerability despite the fact that no user can actually log in through SSH. Attackers may exploit this …
VDE-2024-057
April 3, 2025, 12:00 PM
The CODESYS web server component of the CODESYS Control runtime system is used by the CODESYS WebVisu to display visualization screens in a web browser. Receiving a specifically crafted TLS …
VDE-2024-046
Sept. 10, 2024, 4:00 PM
The OSCAT Basic library is one of several libraries developed and provided by OSCAT. OSCAT (oscat.de) stands for "Open Source Community for Automation Technology". The OSCAT Basic library offers function …
VDE-2024-051
May 14, 2025, 3:00 PM
mGuards use an OpenSSH server for SSH access. This server is vulnerable to a remote code injection.
VDE-2024-039
Aug. 27, 2025, 12:00 PM
Confidential data in HTTP query string of user requests. Incomplete sanitation of user input in administrative web interface.
VDE-2024-052
May 14, 2025, 3:00 PM
The pathfinder TCP encapsulation service is vulnerable to a drain of open file descriptors.