Overview Vendor: PHOENIX CONTACT Product: PLCnext AXC F 2152 Version: 2020.01 LTS Vulnerability: Improper Privilege Management Fixed Version: 2021.0 LTS Background From the vendor’s website: “PLCnext Control devices enable you to work flexibly with your preferred programming languages, whether IEC 61131-3 or high-level languages. Unlimited flexibility with the quick and...
Overview Vendor: PHOENIX CONTACT Product: PLCnext AXC F 2152 Version: 2020.01 LTS Vulnerability: Exposure of Sensitive Information Fixed Version: 2021.0 LTS Background From the vendor’s website: “PLCnext Control devices enable you to work flexibly with your preferred programming languages, whether IEC 61131-3 or high-level languages. Unlimited flexibility with the quick...
Overview Vendor: PHOENIX CONTACT Product: PLCnext AXC F 2152 Version: 2020.01 LTS Vulnerability: Stored Cross-Site-Scripting (Authenticated) Fixed Version: 2021.0 LTS Background From the vendor’s website: “PLCnext Control devices enable you to work flexibly with your preferred programming languages, whether IEC 61131-3 or high-level languages. Unlimited flexibility with the quick and...
Overview Vendor: GitLab Inc. Product: Gitlab Enterprise (gitlab.com) Version: 12.0.0-pre Vulnerability: Relected Cross-Site Scripting Fixed Version: 12.5 Background GitLab provides a Git-repository manager with on top services and tools like a web-based DevOps lifecycle tool, wiki, issue-tracking and CI/CD pipeline features. GitLab is using an open-source license and developed by...
Overview Vendor: SECUDOS GmbH Product: DOMOS Version: 5.5 Vulnerability: Relected Cross-Site Scripting Fixed Version: 5.6 Background DOMOS is an own and hardened operating system of SECUDOS GmbH. The operating system is used as a platform by several applications. It also offers a web interface for the administration of operating system...