CVSS: 4.3EPSS: 0%CPEs: 12EXPL: 0CVE-2023-37856 – PHOENIX CONTACT: Unauthorized read-access of root filesystem in WP 6xxx Web panels
https://notcve.org/view.php?id=CVE-2023-37856
09 Aug 2023 — In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with low privileges is able to gain limited read-access to the device-filesystem through a configuration dialog within the embedded Qt browser . • https://cert.vde.com/en/advisories/VDE-2023-018 • CWE-610: Externally Controlled Reference to a Resource in Another Sphere •
CVSS: 8.3EPSS: 0%CPEs: 12EXPL: 0CVE-2023-37863 – PHOENIX CONTACT: OS Command Injection in WP 6xxx Web panels
https://notcve.org/view.php?id=CVE-2023-37863
09 Aug 2023 — In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with SNMPv2 write privileges may use an a special SNMP request to gain full access to the device. In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with SNMPv2 write privileges may use an a special SNMP request to gain full access to the device. • https://cert.vde.com/en/advisories/VDE-2023-018 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 8.3EPSS: 0%CPEs: 12EXPL: 0CVE-2023-37859 – PHOENIX CONTACT: Improper Privilege Management in WP 6xxx Web panels
https://notcve.org/view.php?id=CVE-2023-37859
09 Aug 2023 — In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 the SNMP daemon is running with root privileges allowing a remote attacker with knowledge of the SNMPv2 r/w community string to execute system commands as root. • https://cert.vde.com/en/advisories/VDE-2023-018 • CWE-269: Improper Privilege Management •
CVSS: 8.3EPSS: 0%CPEs: 12EXPL: 0CVE-2023-37864 – PHOENIX CONTACT: WP 6xxx Web panels prone to download code without integrity check
https://notcve.org/view.php?id=CVE-2023-37864
09 Aug 2023 — In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with SNMPv2 write privileges may use an a special SNMP request to gain full access to the device. In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with SNMPv2 write privileges may use an a special SNMP request to gain full access to the device. • https://cert.vde.com/en/advisories/VDE-2023-018 • CWE-494: Download of Code Without Integrity Check •
CVSS: 8.5EPSS: 0%CPEs: 12EXPL: 0CVE-2023-37862 – PHOENIX CONTACT: Missing Authorization in WP 6xxx Web panels
https://notcve.org/view.php?id=CVE-2023-37862
09 Aug 2023 — In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 an unauthenticated remote attacker can access upload-functions of the HTTP API. This might cause certificate errors for SSL-connections and might result in a partial denial-of-service. • https://cert.vde.com/en/advisories/VDE-2023-018 • CWE-862: Missing Authorization •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2023-37860 – PHOENIX CONTACT: Missing Authorization in WP 6xxx Web panels
https://notcve.org/view.php?id=CVE-2023-37860
09 Aug 2023 — In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote unauthenticated attacker can obtain the r/w community string of the SNMPv2 daemon. • https://cert.vde.com/en/advisories/VDE-2023-018 • CWE-862: Missing Authorization •
CVSS: 9.0EPSS: 6%CPEs: 12EXPL: 0CVE-2023-37861 – PHOENIX CONTACT: OS Command Injection in WP 6xxx Web panels
https://notcve.org/view.php?id=CVE-2023-37861
09 Aug 2023 — In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 an authenticated remote attacker can execute code with root permissions with a specially crafted HTTP POST when uploading a certificate to the device. • https://cert.vde.com/en/advisories/VDE-2023-018 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 6.1EPSS: 0%CPEs: 14EXPL: 1CVE-2023-3569 – PHOENIX CONTACT: Denial-of-Service due to malicious XML files in TC ROUTER, TC CLOUD CLIENT and CLOUD CLIENT
https://notcve.org/view.php?id=CVE-2023-3569
08 Aug 2023 — In PHOENIX CONTACTs TC ROUTER and TC CLOUD CLIENT in versions prior to 2.07.2 as well as CLOUD CLIENT 1101T-TX/TX prior to 2.06.10 an authenticated remote attacker with admin privileges could upload a crafted XML file which causes a denial-of-service. Phoenix Contact TC Router 3002T-4G* versions prior to 2.0.2, TC Cloud Client 1002-4G* versions prior to 2.07.2, and Cloud Client 1101T-TX/TX versions prior to 2.06.10 suffer from cross site scripting and memory consumption vulnerabilities. • https://packetstorm.news/files/id/174152 • CWE-776: Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion') •
CVSS: 10.0EPSS: 1%CPEs: 14EXPL: 1CVE-2023-3526 – PHOENIX CONTACT: Cross-site Scripting vulnerability in TC ROUTER, TC CLOUD CLIENT and CLOUD CLIENT devices
https://notcve.org/view.php?id=CVE-2023-3526
08 Aug 2023 — In PHOENIX CONTACTs TC ROUTER and TC CLOUD CLIENT in versions prior to 2.07.2 as well as CLOUD CLIENT 1101T-TX/TX prior to 2.06.10 an unauthenticated remote attacker could use a reflective XSS within the license viewer page of the devices in order to execute code in the context of the user's browser. Phoenix Contact TC Router 3002T-4G* versions prior to 2.0.2, TC Cloud Client 1002-4G* versions prior to 2.07.2, and Cloud Client 1101T-TX/TX versions prior to 2.06.10 suffer from cross site scripting and memory... • https://packetstorm.news/files/id/174152 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.0EPSS: 0%CPEs: 12EXPL: 0CVE-2023-3570 – PHOENIX CONTACT: OS Command Injection in WP 6xxx Web panels
https://notcve.org/view.php?id=CVE-2023-3570
08 Aug 2023 — In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with low privileges may use a specific HTTP DELETE request to gain full access to the device. • https://cert.vde.com/en/advisories/VDE-2023-018 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •