Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phoenixcontact vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2021-34582
In Phoenix Contact FL MGUARD 1102 and 1105 in Versions 1.4.0, 1.4.1 and 1.5.0 a user with high privileges can inject HTML code (XSS) through web-based management or the REST API with a manipulated certificate file.
Phoenixcontact Fl Mguard 1102 Firmware 1.4.1
Phoenixcontact Fl Mguard 1102 Firmware 1.5.0
Phoenixcontact Fl Mguard 1102 Firmware 1.4.0
Phoenixcontact Fl Mguard 1105 Firmware 1.4.0
Phoenixcontact Fl Mguard 1105 Firmware 1.4.1
Phoenixcontact Fl Mguard 1105 Firmware 1.5.0
7.5
CVSSv3
CVE-2021-34598
In Phoenix Contact FL MGUARD 1102 and 1105 in Versions 1.4.0, 1.4.1 and 1.5.0 the remote logging functionality is impaired by the lack of memory release for data structures from syslog-ng when remote logging is active
Phoenixcontact Fl Mguard 1102 Firmware 1.4.1
Phoenixcontact Fl Mguard 1102 Firmware 1.5.0
Phoenixcontact Fl Mguard 1102 Firmware 1.4.0
Phoenixcontact Fl Mguard 1105 Firmware 1.4.0
Phoenixcontact Fl Mguard 1105 Firmware 1.4.1
Phoenixcontact Fl Mguard 1105 Firmware 1.5.0
7.5
CVSSv3
CVE-2020-9435
PHOENIX CONTACT TC ROUTER 3002T-4G up to and including 2.05.3, TC ROUTER 2002T-3G up to and including 2.05.3, TC ROUTER 3002T-4G VZW up to and including 2.05.3, TC ROUTER 3002T-4G ATT up to and including 2.05.3, TC CLOUD CLIENT 1002-4G up to and including 2.03.17, and TC CLOUD CL...
Phoenixcontact Tc Router 3002t-4g Firmware
Phoenixcontact Tc Router 2002t-3g Firmware
Phoenixcontact Tc Router 3002t-4g Vzw Firmware
Phoenixcontact Tc Router 3002t-4g Att Firmware
Phoenixcontact Tc Cloud Client 1002-4g Firmware
Phoenixcontact Tc Cloud Client 1002-txtx Firmware
8.8
CVSSv3
CVE-2023-3570
In PHOENIX CONTACTs WP 6xxx series web panels in versions before 4.0.10 a remote attacker with low privileges may use a specific HTTP DELETE request to gain full access to the device.
Phoenixcontact Wp 6070-wvps Firmware
Phoenixcontact Wp 6101-wxps Firmware
Phoenixcontact Wp 6121-wxps Firmware
Phoenixcontact Wp 6156-whps Firmware
Phoenixcontact Wp 6185-whps Firmware
Phoenixcontact Wp 6215-whps Firmware
8.8
CVSSv3
CVE-2023-3571
In PHOENIX CONTACTs WP 6xxx series web panels in versions before 4.0.10 a remote attacker with low privileges may use a specific HTTP POST releated to certificate operations to gain full access to the device.
Phoenixcontact Wp 6070-wvps Firmware
Phoenixcontact Wp 6101-wxps Firmware
Phoenixcontact Wp 6121-wxps Firmware
Phoenixcontact Wp 6156-whps Firmware
Phoenixcontact Wp 6185-whps Firmware
Phoenixcontact Wp 6215-whps Firmware
10
CVSSv3
CVE-2023-3572
In PHOENIX CONTACTs WP 6xxx series web panels in versions before 4.0.10 a remote, unauthenticated attacker may use an attribute of a specific HTTP POST request releated to date/time operations to gain full access to the device.
Phoenixcontact Wp 6070-wvps Firmware
Phoenixcontact Wp 6101-wxps Firmware
Phoenixcontact Wp 6121-wxps Firmware
Phoenixcontact Wp 6156-whps Firmware
Phoenixcontact Wp 6185-whps Firmware
Phoenixcontact Wp 6215-whps Firmware
8.8
CVSSv3
CVE-2023-3573
In PHOENIX CONTACTs WP 6xxx series web panels in versions before 4.0.10 a remote attacker with low privileges may use a command injection in a HTTP POST request releated to font configuration operations to gain full access to the device.
Phoenixcontact Wp 6070-wvps Firmware
Phoenixcontact Wp 6101-wxps Firmware
Phoenixcontact Wp 6121-wxps Firmware
Phoenixcontact Wp 6156-whps Firmware
Phoenixcontact Wp 6185-whps Firmware
Phoenixcontact Wp 6215-whps Firmware
8.8
CVSSv3
CVE-2020-9436
PHOENIX CONTACT TC ROUTER 3002T-4G up to and including 2.05.3, TC ROUTER 2002T-3G up to and including 2.05.3, TC ROUTER 3002T-4G VZW up to and including 2.05.3, TC ROUTER 3002T-4G ATT up to and including 2.05.3, TC CLOUD CLIENT 1002-4G up to and including 2.03.17, and TC CLOUD CL...
Phoenixcontact Tc Router 3002t-4g Firmware
Phoenixcontact Tc Router 2002t-3g Firmware
Phoenixcontact Tc Router 3002t-4g Vzw Firmware
Phoenixcontact Tc Router 3002t-4g Att Firmware
Phoenixcontact Tc Cloud Client 1002-4g Firmware
Phoenixcontact Tc Cloud Client 1002-txtx Firmware
1 Github repository
4.3
CVSSv3
CVE-2023-37855
In PHOENIX CONTACTs WP 6xxx series web panels in versions before 4.0.10 a remote attacker with low privileges is able to gain limited read-access to the device-filesystem within the embedded Qt browser.
Phoenixcontact Wp 6070-wvps Firmware
Phoenixcontact Wp 6101-wxps Firmware
Phoenixcontact Wp 6121-wxps Firmware
Phoenixcontact Wp 6156-whps Firmware
Phoenixcontact Wp 6185-whps Firmware
Phoenixcontact Wp 6215-whps Firmware
4.3
CVSSv3
CVE-2023-37856
In PHOENIX CONTACTs WP 6xxx series web panels in versions before 4.0.10 a remote attacker with low privileges is able to gain limited read-access to the device-filesystem through a configuration dialog within the embedded Qt browser .
Phoenixcontact Wp 6070-wvps Firmware
Phoenixcontact Wp 6101-wxps Firmware
Phoenixcontact Wp 6121-wxps Firmware
Phoenixcontact Wp 6156-whps Firmware
Phoenixcontact Wp 6185-whps Firmware
Phoenixcontact Wp 6215-whps Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »