In PHOENIX CONTACTs WP 6xxx series web panels in versions before 4.0.10 an authenticated remote attacker can execute code with root permissions with a specially crafted HTTP POST when uploading a certificate to the device.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phoenixcontact wp 6070-wvps firmware |
||
phoenixcontact wp 6101-wxps firmware |
||
phoenixcontact wp 6121-wxps firmware |
||
phoenixcontact wp 6156-whps firmware |
||
phoenixcontact wp 6185-whps firmware |
||
phoenixcontact wp 6215-whps firmware |