Advisories

Show filters filter

Manufacturer

Scoring

For CVSS 2.0, 3.0 and 3.2

No CVE available

0.1 - 3.9

4 - 6.9

7 - 8.9

9 - 10

VDE-2021-055

April 26, 2022, 12:00 PM

Pilz: PMC programming tool 2.x.x affected by multiple vulnerabilities

The software product PMC programming tool from Pilz is based on the software CODESYS Development System from CODESYS GmbH. This software is affected by several vulnerabilities, which an attacker can …

CVE-2019-16265

CVE-2020-14517

CVE-2020-14509

CVE-2021-34595

CVE-2021-34593

CVE-2020-14515

CVE-2020-14513

CVE-2020-14519

CVE-2020-16233

CVE-2021-34596

VDE-2022-014

May 22, 2025, 3:03 PM

PHOENIX CONTACT: mGuard Device Manager affected by HTTP Request Smuggling of Apache Webserver

Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling. For the mGuard Device …

CVE-2022-22720

VDE-2022-013

May 14, 2025, 3:00 PM

PHOENIX CONTACT: Multiple products affected by possible infinite loop within OpenSSL library

FL MGUARD and TC MGUARD devices are affected by a possible infinite loop within a OpenSSL library method for parsing elliptic curve parameters. This method is used on parsing cryptographic …

CVE-2022-0778

VDE-2022-010

May 22, 2025, 3:03 PM

PHOENIX CONTACT: Multiple Linux component vulnerabilities fixed in latest AXC F x152 LTS release

PLCnext Control AXC F x152 is certified according to IEC 62443-4-1 and IEC 62443-4-2. This certification requires that all third-party components used in the firmware are regularly checked for known …

CVE-2021-20232

CVE-2021-20231

CVE-2021-3711

CVE-2022-23852

CVE-2022-22822

CVE-2022-22823

CVE-2022-22824

CVE-2021-35942

CVE-2021-45079

CVE-2022-22827

CVE-2021-3518

CVE-2021-45960

CVE-2022-22825

CVE-2022-22826

CVE-2021-3517

CVE-2020-10878

CVE-2020-10543

CVE-2018-1000500

CVE-2019-17498

CVE-2020-6096

CVE-2021-20305

CVE-2020-8177

CVE-2021-46143

CVE-2019-18276

CVE-2021-23017

CVE-2021-21300

CVE-2021-22926

CVE-2020-8169

CVE-2021-22946

CVE-2019-20907

CVE-2021-43618

CVE-2020-12723

CVE-2020-24659

CVE-2021-40330

CVE-2021-3580

CVE-2021-41990

CVE-2022-23990

CVE-2020-15078

CVE-2021-3712

CVE-2021-42380

CVE-2021-42382

CVE-2021-42378

CVE-2021-42384

CVE-2021-42379

CVE-2021-42381

CVE-2021-42386

CVE-2021-42385

CVE-2021-22922

CVE-2019-20892

CVE-2021-45117

CVE-2021-22947

CVE-2021-3537

CVE-2021-22923

CVE-2021-22925

CVE-2021-22897

CVE-2016-20012

CVE-2021-42374

CVE-2020-29562

CVE-2021-20193

CVE-2021-22898

VDE-2022-008

April 7, 2022, 8:00 AM

WEIDMUELLER: Multiple vulnerabilities in Modbus TCP/RTU Gateways

Multiple issues have been found in the affected products. See CVE descriptions for details.

CVE-2019-9099

CVE-2019-9095

CVE-2019-9096

CVE-2019-9102

CVE-2019-9098

CVE-2019-9101

CVE-2019-9104

CVE-2019-9103

CVE-2019-9097

VDE-2022-009

May 22, 2025, 3:03 PM

WAGO: Multiple Products affected by Linux Kernel Vulnerability Dirty Pipe

The Linux kernel starting from 5.8 has a flaw which can lead to privilege escalation for a local user. The kernel is used in several Versions of the FW of …

CVE-2022-0847

VDE-2022-005

May 22, 2025, 3:03 PM

PHOENIX CONTACT: Vulnerabilities in XML parser library Expat (libexpat)

Several vulnerabilities have been discovered in the Expat XML parser library (aka libexpat).This open-source component is widely used in a lot of products worldwide.A remote, anonymous attacker could use an …

CVE-2022-23852

CVE-2022-22822

CVE-2022-22823

CVE-2022-22824

CVE-2022-25315

CVE-2022-25236

CVE-2022-25235

CVE-2022-22827

CVE-2021-45960

CVE-2022-22825

CVE-2022-22826

CVE-2021-46143

CVE-2022-23990

CVE-2022-25314

CVE-2022-25313

VDE-2022-006

March 24, 2022, 11:48 AM

Endress+Hauser: FieldPort SFP50 Memory Corruption in Bluetooth Controller Firmware

Possible memory corruption in BT controller when it receives an oversized LMP packet over 2-DH1 link and leads to denial of service.

CVE-2021-35093