Michael KoerferAug 12, 2025
A critical vulnerability in the device’s Lua runtime — an undocumented function —bypasses all sandboxing restrictions and allows arbitrary OS command execution as root. #icssecurity #ics #otsecurity #lua
Show threadInsanitreeAug 12, 2025
@OT_MacDonald Took long enough to find. Convenience link for anybody else interested: https://certvde.com/de/advisories/VDE-2025-065/
VDE-2025-065 | CERT@VDE

Advisories

Show threadMichael Koerfer
@Insanitree Thx, have forgotten the link!
Aug 13, 2025 at 4:18amWeb