In PHOENIX CONTACTs WP 6xxx series web panels in versions before 4.0.10 the SNMP daemon is running with root privileges allowing a remote attacker with knowledge of the SNMPv2 r/w community string to execute system commands as root.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phoenixcontact wp_6070-wvps_firmware |
||
phoenixcontact wp_6101-wxps_firmware |
||
phoenixcontact wp_6121-wxps_firmware |
||
phoenixcontact wp_6156-whps_firmware |
||
phoenixcontact wp_6185-whps_firmware |
||
phoenixcontact wp_6215-whps_firmware |