VYPR

Vendor CVEs

Phoenixcontact

All CVEs

138 total · sorted by risk
  • CVE-2021-33541Jun 25, 2021
    risk 0.00cvss epss 0.01

    Phoenix Contact Classic Line Controllers ILC1x0 and ILC1x1 in all versions/variants are affected by a Denial-of-Service vulnerability. The communication protocols and device access do not feature authentication measures. Remote attackers can use specially crafted IP packets to…

  • CVE-2021-33540Jun 25, 2021
    risk 0.00cvss epss 0.01

    In certain devices of the Phoenix Contact AXL F BK and IL BK product families an undocumented password protected FTP access to the root directory exists.

  • CVE-2021-21005Jun 25, 2021
    risk 0.00cvss epss 0.01

    In Phoenix Contact FL SWITCH SMCS series products in multiple versions if an attacker sends a hand-crafted TCP-Packet with the Urgent-Flag set and the Urgent-Pointer set to 0, the network stack will crash. The device needs to be rebooted afterwards.

  • CVE-2021-21004Jun 25, 2021
    risk 0.00cvss epss 0.01

    In Phoenix Contact FL SWITCH SMCS series products in multiple versions an attacker may insert malicious code via LLDP frames into the web-based management which could then be executed by the client.

  • CVE-2021-21003Jun 25, 2021
    risk 0.00cvss epss 0.01

    In Phoenix Contact FL SWITCH SMCS series products in multiple versions fragmented TCP-Packets may cause a Denial of Service of Web-, SNMP- and ICMP-Echo services. The switching functionality of the device is not affected.

  • CVE-2021-21002Jun 25, 2021
    risk 0.00cvss epss 0.01

    In Phoenix Contact FL COMSERVER UNI in versions < 2.40 a invalid Modbus exception response can lead to a temporary denial of service.

  • CVE-2020-12523Dec 17, 2020
    risk 0.00cvss epss 0.01

    On Phoenix Contact mGuard Devices versions before 8.8.3 LAN ports get functional after reboot even if they are disabled in the device configuration. For mGuard devices with integrated switch on the LAN side, single switch ports can be disabled by device configuration. After a…

  • CVE-2020-12521Dec 17, 2020
    risk 0.00cvss epss 0.00

    On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS a specially crafted LLDP packet may lead to a high system load in the PROFINET stack. An attacker can cause failure of system services or a complete reboot.

  • CVE-2020-12519Dec 17, 2020
    risk 0.00cvss epss 0.01

    On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use this vulnerability i.e. to open a reverse shell with root privileges.

  • CVE-2020-12518Dec 17, 2020
    risk 0.00cvss epss 0.01

    On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use the knowledge gained by reading the insufficiently protected sensitive information to plan further attacks.

  • CVE-2020-12517Dec 17, 2020
    risk 0.00cvss epss 0.01

    On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an authenticated low privileged user could embed malicious Javascript code to gain admin rights when the admin user visits the vulnerable website (local privilege escalation).

  • CVE-2020-12524Dec 2, 2020
    risk 0.00cvss epss 0.01

    Uncontrolled Resource Consumption can be exploited to cause the Phoenix Contact HMIs BTP 2043W, BTP 2070W and BTP 2102W in all versions to become unresponsive and not accurately update the display content (Denial of Service).

  • CVE-2020-12499Jul 21, 2020
    risk 0.00cvss epss 0.00

    In PHOENIX CONTACT PLCnext Engineer version 2020.3.1 and earlier an improper path sanitation vulnerability exists on import of project files.

  • CVE-2020-12498Jul 1, 2020
    risk 0.00cvss epss 0.02

    mwe file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and earlier is vulnerable to out-of-bounds read remote code execution. Manipulated PC Worx projects could lead to a remote code execution due to insufficient input data validation.

  • CVE-2020-10940Mar 27, 2020
    risk 0.00cvss epss 0.00

    Local Privilege Escalation can occur in PHOENIX CONTACT PORTICO SERVER through 3.0.7 when installed to run as a service.

  • CVE-2020-10939Mar 27, 2020
    risk 0.00cvss epss 0.00

    Insecure, default path permissions in PHOENIX CONTACT PC WORX SRT through 1.14 allow for local privilege escalation.

  • CVE-2020-9435Mar 12, 2020
    risk 0.00cvss epss 0.01

    PHOENIX CONTACT TC ROUTER 3002T-4G through 2.05.3, TC ROUTER 2002T-3G through 2.05.3, TC ROUTER 3002T-4G VZW through 2.05.3, TC ROUTER 3002T-4G ATT through 2.05.3, TC CLOUD CLIENT 1002-4G through 2.03.17, and TC CLOUD CLIENT 1002-TXTX through 1.03.17 devices contain a hardcoded…

  • CVE-2020-9436Mar 12, 2020
    risk 0.00cvss epss 0.03

    PHOENIX CONTACT TC ROUTER 3002T-4G through 2.05.3, TC ROUTER 2002T-3G through 2.05.3, TC ROUTER 3002T-4G VZW through 2.05.3, TC ROUTER 3002T-4G ATT through 2.05.3, TC CLOUD CLIENT 1002-4G through 2.03.17, and TC CLOUD CLIENT 1002-TXTX through 1.03.17 devices allow authenticated…

  • CVE-2018-16994Feb 18, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered on PHOENIX CONTACT AXL F BK PN <=1.0.4, AXL F BK ETH <= 1.12, and AXL F BK ETH XC <= 1.11 devices and Bosch Rexroth S20-ETH-BK and Rexroth S20-PN-BK+ (the S20-PN-BK+/S20-ETH-BK fieldbus couplers sold by Bosch Rexroth contain technology from Phoenix…

  • CVE-2019-18352Feb 18, 2020
    risk 0.00cvss epss 0.00

    Improper access control exists on PHOENIX CONTACT FL NAT 2208 devices before V2.90 and FL NAT 2304-2GC-2SFP devices before V2.90 when using MAC-based port security.

  • CVE-2020-8768Feb 17, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered on Phoenix Contact Emalytics Controller ILC 2050 BI before 1.2.3 and BI-L before 1.2.3 devices. There is an insecure mechanism for read and write access to the configuration of the device. The mechanism can be discovered by examining a link on the website…

  • CVE-2019-12869Jun 24, 2019
    risk 0.00cvss epss 0.04

    An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC Worx or Config+ project file could lead to an Out-Of-Bounds Read, Information Disclosure, and remote code execution. The attacker needs to…

  • CVE-2019-12870Jun 24, 2019
    risk 0.00cvss epss 0.04

    An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC Worx or Config+ project file could lead to an Uninitialized Pointer and remote code execution. The attacker needs to get access to an…

  • CVE-2019-12871Jun 24, 2019
    risk 0.00cvss epss 0.04

    An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC Worx or Config+ project file could lead to a Use-After-Free and remote code execution. The attacker needs to get access to an original PC…

  • CVE-2019-10998Jun 18, 2019
    risk 0.00cvss epss 0.00

    An issue was discovered on Phoenix Contact AXC F 2152 (No.2404267) before 2019.0 LTS and AXC F 2152 STARTERKIT (No.1046568) before 2019.0 LTS devices. Unlimited physical access to the PLC may lead to a manipulation of SD cards data. SD card manipulation may lead to an…

  • CVE-2019-10997Jun 17, 2019
    risk 0.00cvss epss 0.01

    An issue was discovered on Phoenix Contact AXC F 2152 (No.2404267) before 2019.0 LTS and AXC F 2152 STARTERKIT (No.1046568) before 2019.0 LTS devices. Protocol Fuzzing on PC WORX Engineer by a man in the middle attacker stops the PLC service. The device must be rebooted, or the…

  • CVE-2018-13994May 7, 2019
    risk 0.00cvss epss 0.02

    The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 is vulnerable to a denial-of-service attack by making more than 120 connections.

  • CVE-2018-13993May 7, 2019
    risk 0.00cvss epss 0.01

    The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 is prone to CSRF.

  • CVE-2018-13992May 7, 2019
    risk 0.00cvss epss 0.01

    The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 allows for plaintext transmission (HTTP) of user credentials by default.

  • CVE-2018-13991May 7, 2019
    risk 0.00cvss epss 0.02

    The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 leaks private information in firmware images.

  • CVE-2018-13990May 6, 2019
    risk 0.00cvss epss 0.02

    The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions prior to 1.35 is vulnerable to brute-force attacks, because of Improper Restriction of Excessive Authentication Attempts.

  • CVE-2019-9743Mar 26, 2019
    risk 0.00cvss epss 0.03

    An issue was discovered on PHOENIX CONTACT RAD-80211-XD and RAD-80211-XD/HP-BUS devices. Command injection can occur in the WebHMI component.

  • CVE-2019-9744Mar 26, 2019
    risk 0.00cvss epss 0.02

    An issue was discovered on PHOENIX CONTACT FL NAT SMCS 8TX, FL NAT SMN 8TX, FL NAT SMN 8TX-M, and FL NAT SMN 8TX-M-DMG devices. There is unauthorized access to the WEB-UI by attackers arriving from the same source IP address as an authenticated user, because this IP address is…

  • CVE-2015-3966Aug 30, 2015
    risk 0.00cvss epss 0.02

    The IPsec SA establishment process on Innominate mGuard devices with firmware 8.x before 8.1.7 allows remote authenticated users to cause a denial of service (VPN service restart) by leveraging a peer relationship to send a crafted configuration with compression.

  • CVE-2014-9193Dec 20, 2014
    risk 0.00cvss epss 0.03

    Innominate mGuard with firmware before 7.6.6 and 8.x before 8.1.4 allows remote authenticated admins to obtain root privileges by changing a PPP configuration setting.

  • CVE-2014-2356Jul 30, 2014
    risk 0.00cvss epss 0.03

    Innominate mGuard before 7.6.4 and 8.x before 8.0.3 does not require authentication for snapshot downloads, which allows remote attackers to obtain sensitive information via a crafted HTTPS request.

  • CVE-2012-3006Jun 19, 2012
    risk 0.00cvss epss 0.01

    The Innominate mGuard Smart HW before HW-101130 and BD before BD-101030, mGuard industrial RS, mGuard delta HW before HW-103060 and BD before BD-211010, mGuard PCI, mGuard blade, and EAGLE mGuard appliances with software before 7.5.0 do not use a sufficient source of entropy for…

  • CVE-2008-7199Sep 10, 2009
    risk 0.00cvss epss 0.01

    Phoenix Contact FL IL 24 BK-PAC allows remote attackers to cause a denial of service (hang) via (1) unspecified manipulations as demonstrated by a Nessus scan or (2) malformed input to TCP port 502.

Page 3 of 3