| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-1698 | WAGO: WBM Command Injection in multiple products | WAGO | Compact Controller CC100 | Critical | 9.8 | 2023-05-15 08:51:27 | Deep Dive |
| CVE-2022-4224 | CODESYS: Exposure of Resource to Wrong Sphere in CODESYS V3 | CODESYS | Control RTE (SL) | High | 8.8 | 2023-03-23 11:15:37 | Deep Dive |
| CVE-2018-25048 | Codesys Runtime Improper Limitation of a Pathname | CODESYS | Control for BeagleBone | High | 8.8 | 2023-03-23 10:45:37 | Deep Dive |
| CVE-2022-45140 | WAGO: Missing Authentication for Critical Function | WAGO | Compact Controller CC100 (751-9301) | Critical | 9.8 | 2023-02-27 14:36:39 | Deep Dive |
| CVE-2022-45139 | WAGO: Origin validation error through CORS misconfiguration | WAGO | Compact Controller CC100 (751-9301) | Medium | 5.3 | 2023-02-27 14:36:32 | Deep Dive |
| CVE-2022-45138 | WAGO: Missing Authentication for Critical Function | WAGO | Compact Controller CC100 (751-9301) | Critical | 9.8 | 2023-02-27 14:36:20 | Deep Dive |
| CVE-2022-45137 | WAGO: Reflective Cross-Site Scripting | WAGO | Compact Controller CC100 (751-9301) | Medium | 6.1 | 2023-02-27 14:36:03 | Deep Dive |
| CVE-2022-3738 | WAGO: Missing authentication for config export functionality in multiple products | WAGO | Series WAGO PFC100 | Medium | 5.9 | 2023-01-19 11:27:52 | Deep Dive |
| CVE-2022-3281 | WAGO: multiple products - Loss of MAC-Address-Filtering after reboot | WAGO | 750-81xx/xxx-xxx Series PFC100/PFC200 | High | 7.5 | 2022-10-17 08:20:12 | Deep Dive |
| CVE-2022-30792 | CODESYS: CmpChannelServer, CmpChannelServerEmbedded allow unauthenticated attackers to block all their available communication channels | CODESYS | CODESYS Control RTE (SL) | High | 7.5 | 2022-07-11 10:40:44 | Deep Dive |
| CVE-2022-30791 | CODESYS V3: CmpBlkDrvTcp allows unauthenticated attackers to block all its available TCP connections | CODESYS | CODESYS Control RTE (SL) | High | 7.5 | 2022-07-11 10:40:39 | Deep Dive |
| CVE-2022-22519 | Special HTTP(s) Requests can cause a buffer-read causing a crash of the webserver and the runtime system. | CODESYS | CODESYS Control RTE (SL) | High | 7.5 | 2022-04-07 18:21:24 | Deep Dive |
| CVE-2022-22518 | A bug in the CODESYS V3 CmpUserMgr component fails to correctly apply a security policy. | CODESYS | CODESYS Control for BeagleBone SL | Medium | 6.5 | 2022-04-07 18:21:22 | Deep Dive |
| CVE-2022-22517 | Communication Components in multiple CODESYS products vulnerable to communication channel disruption | CODESYS | CODESYS Control RTE (SL) | High | 7.5 | 2022-04-07 18:21:20 | Deep Dive |
| CVE-2022-22515 | A component of the CODESYS Control runtime system allows read and write access to configuration files | CODESYS | CODESYS Control RTE (SL) | High | 8.1 | 2022-04-07 18:21:16 | Deep Dive |
| CVE-2022-22514 | Untrusted Pointer Dereference in multiple CODESYS products can lead to a DoS. | CODESYS | CODESYS Control RTE (SL) | High | 7.1 | 2022-04-07 18:21:14 | Deep Dive |
| CVE-2022-22513 | Null Pointer Dereference in multiple CODESYS products can lead to a DoS. | CODESYS | CODESYS Control RTE (SL) | Medium | 6.5 | 2022-04-07 18:21:13 | Deep Dive |
| CVE-2022-22511 | WAGO PLCs WBM vulnerable to reflected XSS | WAGO | Compact Controller CC100 (751-9301) | Medium | 5.4 | 2022-03-09 19:38:44 | Deep Dive |
| CVE-2019-5134 | WAGO PFC100和PFC200 信息泄露漏洞 | Wago | WAGO PFC200 Firmware | 高危 | - | 2020-03-10 23:41:24 | Deep Dive |
| CVE-2019-5135 | WAGO PFC100和WAGO PFC 200 安全漏洞 | Wago | WAGO PFC200 Firmware | 中危 | - | 2020-03-10 21:59:31 | Deep Dive |