| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-5872 | Wago: Vulnerability in Smart Designer Web-Application | Wago | Smart Designer | Medium | 4.3 | 2026-04-16 04:55:36 | Deep Dive |
| CVE-2024-1490 | Wago: Vulnerability in WBM through Open VPN | WAGO | CC100 (0751-9x01) | High | 7.2 | 2026-04-09 10:52:41 | Deep Dive |
| CVE-2026-2328 | Backend Access Due to Insufficient Input Validation | WAGO | Device Sphere | High | 7.5 | 2026-03-30 06:55:31 | Deep Dive |
| CVE-2026-3509 | CODESYS Control Audit Log Format String DoS | CODESYS | CODESYS Control RTE (SL) | High | 7.5 | 2026-03-24 07:42:34 | Deep Dive |
| CVE-2025-41660 | CODESYS Control Boot Application Replacement Enables Code Execution | CODESYS | CODESYS Control RTE (SL) | High | 8.8 | 2026-03-24 07:41:43 | Deep Dive |
| CVE-2026-3587 | Hidden CLI Function Allows Root Access | WAGO | Lean Managed Switch 852-1812 | Critical | 10.0 | 2026-03-23 07:49:17 | Deep Dive |
| CVE-2026-22906 | Hardcoded Key Allows Credential Disclosure | WAGO | 0852-1322 | Critical | 9.8 | 2026-02-09 07:40:34 | Deep Dive |
| CVE-2026-22905 | Authentication Bypass via URI Traversal | WAGO | 0852-1322 | High | 7.5 | 2026-02-09 07:40:18 | Deep Dive |
| CVE-2026-22904 | Stack Overflow via Oversized Cookie Fields in lighttpd | WAGO | 0852-1322 | Critical | 9.8 | 2026-02-09 07:40:00 | Deep Dive |
| CVE-2026-22903 | Stack Overflow via SESSIONID Cookie in lighttpd | WAGO | 0852-1322 | Critical | 9.8 | 2026-02-09 07:39:43 | Deep Dive |
| CVE-2022-50926 | WAGO 750-8212 PFC200 G2 2ETH RS Privilege Escalation | Wago | WAGO 750-8212 PFC200 | Critical | 9.8 | 2026-01-13 22:51:57 | Deep Dive |
| CVE-2025-41732 | Stack-based buffer overflow via unsafe sscanf in check_cookie() | WAGO | Indsutrial-Managed-Switches | Critical | 9.8 | 2025-12-10 11:04:37 | Deep Dive |
| CVE-2025-41730 | Stack-based buffer overflow via unsafe sscanf in check_account() | WAGO | Indsutrial-Managed-Switches | Critical | 9.8 | 2025-12-10 11:04:13 | Deep Dive |
| CVE-2025-41738 | CODESYS Control - Invalid type usage in visualization | CODESYS | CODESYS Control RTE (SL) | High | 7.5 | 2025-12-01 10:02:33 | Deep Dive |
| CVE-2025-41739 | CODESYS Control - Linux/QNX SysSocket flaw | CODESYS | CODESYS PLCHandler | Medium | 5.9 | 2025-12-01 10:00:44 | Deep Dive |
| CVE-2025-41716 | Unauthenticated User Enumeration via Missing Authentication | WAGO | Solution Builder | Medium | 5.3 | 2025-09-24 09:04:34 | Deep Dive |
| CVE-2025-41715 | Missing Authentication for Database Access in Web Application | WAGO | Device Sphere | Critical | 9.8 | 2025-09-24 09:04:23 | Deep Dive |
| CVE-2025-41713 | WAGO: Vulnerability in hardware switch circuit | WAGO | CC100 0751-9301 | Medium | 6.5 | 2025-09-15 08:00:50 | Deep Dive |
| CVE-2025-41664 | Improper Permission Handling Enables Unauthorized Access to Firmware and Certificates | WAGO | Coupler 0750-0362 | High | 7.5 | 2025-09-08 06:39:20 | Deep Dive |
| CVE-2025-41691 | CODESYS Control DoS via Unauthenticated NULL Pointer Dereference | CODESYS | Control RTE (SL) | High | 7.5 | 2025-08-04 08:04:35 | Deep Dive |