VDE-2023-008
May 15, 2023, 2:06 PM
Two vulnerabilites have been discovered in myREX24 and myREX24.virtual in all versions through 2.13.3.
VDE-2023-007
May 22, 2025, 3:03 PM
The 'legal information' plugin of web-based-management contained a vulnerability which allowed execution of arbitrary commands with privileges of www user. UPDATE A 15.06.2023 : Removed PFC100 with FW23 as affected …
VDE-2023-009
May 8, 2023, 3:37 PM
ads-tec: Multiple Vulnerabilities in IRF1000, IRF2000 and IRF3000
VDE-2023-004
April 11, 2023, 10:00 AM
A Directory Traversal Vulnerability enables arbitrary file access in ENERGY AXC PU Web service.An authenticated restricted user of the web frontend can access, read, write and create files throughout the …
VDE-2022-061
March 15, 2023, 10:00 AM
VARTA energy storage systems have a web user interface via which users and installers can access live data measurements and configure the system to their needs. It has been discovered …
VDE-2023-003
May 14, 2025, 3:00 PM
Multiple vulnerabilities have been discovered in CODESYS Control V3 runtime system. For details regarding the single vulnerabilities please refer to the security advisories issued by CODESYS: - CODESYS Security Advisory …
VDE-2022-053
May 14, 2025, 3:00 PM
Two Vulnerabilities have been discovered in TC ROUTER 4000 series and CLOUD CLIENT 2000 series up to firmware version 4.5.7x.107. The web administration interface is vulnerable for authenticated admin users …
VDE-2022-060
Feb. 27, 2023, 12:00 PM
The Web-Based Management (WBM) of WAGOs programmable logic controller (PLC) is typically used for administration, commissioning and updates. The configuration backend can in some cases be used without authentication and …