VYPR

Config+

by Phoenixcontact

CVEs (4)

  • CVE-2019-12869HigJun 24, 2019
    risk 0.58cvss 8.8epss 0.04

    An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC Worx or Config+ project file could lead to an Out-Of-Bounds Read, Information Disclosure, and remote code execution. The attacker needs to…

  • CVE-2019-12870HigJun 24, 2019
    risk 0.57cvss 8.8epss 0.04

    An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC Worx or Config+ project file could lead to an Uninitialized Pointer and remote code execution. The attacker needs to get access to an…

  • CVE-2019-12871HigJun 24, 2019
    risk 0.57cvss 8.8epss 0.04

    An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC Worx or Config+ project file could lead to a Use-After-Free and remote code execution. The attacker needs to get access to an original PC…

  • CVE-2019-16675HigOct 31, 2019
    risk 0.51cvss 7.8epss 0.03

    An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC Worx or Config+ project file could lead to an Out-of-bounds Read and remote code execution. The attacker needs to get access to an original…