Published: 08/08/2023 Updated: 14/08/2023

CVSS v3 Base Score: 9.6 | Impact Score: 6 | Exploitability Score: 2.8

VMScore: 0

Subscribe to Cloud Client 1101t-tx Firmware

In PHOENIX CONTACTs TC ROUTER and TC CLOUD CLIENT in versions before 2.07.2 as well as CLOUD CLIENT 1101T-TX/TX before 2.06.10 an unauthenticated remote attacker could use a reflective XSS within the license viewer page of the devices in order to execute code in the context of the user's browser.

Vulnerable Product	Search on Vulmon	Subscribe to Product
phoenixcontact cloud_client_1101t-tx_firmware
phoenixcontact tc_cloud_client_1002-4g_att_firmware
phoenixcontact tc_cloud_client_1002-4g_firmware
phoenixcontact tc_cloud_client_1002-4g_vzw_firmware
phoenixcontact tc_router_3002t-4g_att_firmware
phoenixcontact tc_router_3002t-4g_firmware
phoenixcontact tc_router_3002t-4g_vzw_firmware

Phoenix Contact TC Router 3002T-4G* versions prior to 202, TC Cloud Client 1002-4G* versions prior to 2072, and Cloud Client 1101T-TX/TX versions prior to 20610 suffer from cross site scripting and memory consumption vulnerabilities ...

CWE-79 https://cert.vde.com/en/advisories/VDE-2023-017 http://seclists.org/fulldisclosure/2023/Aug/12 http://packetstormsecurity.com/files/174152/Phoenix-Contact-TC-Cloud-TC-Router-2.x-XSS-Memory-Consumption.html https://nvd.nist.gov https://packetstormsecurity.com/files/174152/Phoenix-Contact-TC-Cloud-TC-Router-2.x-XSS-Memory-Consumption.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-3526

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect