Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phoenixcontact vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2020-8768
An issue exists on Phoenix Contact Emalytics Controller ILC 2050 BI prior to 1.2.3 and BI-L prior to 1.2.3 devices. There is an insecure mechanism for read and write access to the configuration of the device. The mechanism can be discovered by examining a link on the website of t...
Phoenixcontact Ilc 2050 Bi Firmware
Phoenixcontact Ilc 2050 Bi-l Firmware
383
VMScore
CVE-2019-18352
Improper access control exists on PHOENIX CONTACT FL NAT 2208 devices before V2.90 and FL NAT 2304-2GC-2SFP devices before V2.90 when using MAC-based port security.
Phoenixcontact Fl Nat 2208 Firmware
Phoenixcontact Fl Nat 2304-2gc-2sfp Firmware
409
VMScore
CVE-2020-10940
Local Privilege Escalation can occur in PHOENIX CONTACT PORTICO SERVER up to and including 3.0.7 when installed to run as a service.
Phoenixcontact Portico Server 16 Client
Phoenixcontact Portico Server 1 Client
Phoenixcontact Portico Server 4 Client
605
VMScore
CVE-2021-34597
Improper Input Validation vulnerability in PC Worx Automation Suite of Phoenix Contact up to version 1.88 could allow an attacker with a manipulated project file to unpack arbitrary files outside of the selected project directory.
Phoenixcontact Pc Worx
Phoenixcontact Pc Worx Express
605
VMScore
CVE-2020-12498
mwe file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and previous versions is vulnerable to out-of-bounds read remote code execution. Manipulated PC Worx projects could lead to a remote code execution due to insufficient input data validation.
Phoenixcontact Pc Worx
Phoenixcontact Pc Worx Express
605
VMScore
CVE-2020-12497
PLCopen XML file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and previous versions can lead to a stack-based overflow. Manipulated PC Worx projects could lead to a remote code execution due to insufficient input data validation.
Phoenixcontact Pc Worx
Phoenixcontact Pc Worx Express
755
VMScore
CVE-2014-9195
Phoenix Contact ProConOs and MultiProg do not require authentication, which allows remote malicious users to execute arbitrary commands via protocol-compliant traffic.
Phoenixcontact-software Multiprog 5.0
Phoenixcontact-software Proconos Eclr
1 EDB exploit
445
VMScore
CVE-2021-21002
In Phoenix Contact FL COMSERVER UNI in versions < 2.40 a invalid Modbus exception response can lead to a temporary denial of service.
Phoenixcontact Fl Comserver Uni 232\\/422\\/485 Firmware
Phoenixcontact Fl Comserver Uni 232\\/422\\/485-t Firmware
801
VMScore
CVE-2019-9743
An issue exists on PHOENIX CONTACT RAD-80211-XD and RAD-80211-XD/HP-BUS devices. Command injection can occur in the WebHMI component.
Phoenixcontact Rad-80211-xd\\/hp-bus Firmware -
Phoenixcontact Rad-80211-xd Firmware -
NA
CVE-2021-34579
In Phoenix Contact: FL MGUARD DM version 1.12.0 and 1.13.0 access to the Apache web server being installed as part of the FL MGUARD DM on Microsoft Windows does not require login credentials even if configured during installation.Attackers with network access to the Apache web se...
Phoenixcontact Fl Mguard Dm 1.12.0
Phoenixcontact Fl Mguard Dm 1.13.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »