VYPR
Unrated severityNVD Advisory· Published Dec 14, 2023· Updated Aug 2, 2024

PHOENIX CONTACT: Insufficient Read and Write Protection to Logic and Runtime Data in PLCnext Control

CVE-2023-46142

Description

A incorrect permission assignment for critical resource vulnerability in PLCnext products allows an remote attacker with low privileges to gain full access on the affected devices.

Affected products

9
  • Phoenixcontact/AXC F 2152cpe-rescue3 versions
    0+ 2 more
    • (no CPE)range: 0
    • (no CPE)range: 0
    • (no CPE)range: 0
  • PHOENIX CONTACT/BPC 9102Sv5
    Range: 0
  • PHOENIX CONTACT/EPC 1502v5
    Range: 0
  • PHOENIX CONTACT/EPC 1522v5
    Range: 0
  • PHOENIX CONTACT/RFC 4072Rv5
    Range: 0
  • PHOENIX CONTACT/RFC 4072Sv5
    Range: 0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.