Unrated severityNVD Advisory· Published Dec 14, 2023· Updated Aug 2, 2024
PHOENIX CONTACT: Insufficient Read and Write Protection to Logic and Runtime Data in PLCnext Control
CVE-2023-46142
Description
A incorrect permission assignment for critical resource vulnerability in PLCnext products allows an remote attacker with low privileges to gain full access on the affected devices.
Affected products
90+ 2 more
- (no CPE)range: 0
- (no CPE)range: 0
- (no CPE)range: 0
- PHOENIX CONTACT/BPC 9102Sv5Range: 0
- PHOENIX CONTACT/EPC 1502v5Range: 0
- PHOENIX CONTACT/EPC 1522v5Range: 0
- Range: 0
- PHOENIX CONTACT/RFC 4072Rv5Range: 0
- PHOENIX CONTACT/RFC 4072Sv5Range: 0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.