In PHOENIX CONTACTs WP 6xxx series web panels in versions before 4.0.10 a remote, unauthenticated attacker may use an attribute of a specific HTTP POST request releated to date/time operations to gain full access to the device.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phoenixcontact wp 6070-wvps firmware |
||
phoenixcontact wp 6101-wxps firmware |
||
phoenixcontact wp 6121-wxps firmware |
||
phoenixcontact wp 6156-whps firmware |
||
phoenixcontact wp 6185-whps firmware |
||
phoenixcontact wp 6215-whps firmware |