CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-3461 – Buffer Overflow in PHOENIX CONTACT Automationworx Software Suite
https://notcve.org/view.php?id=CVE-2022-3461
15 Nov 2022 — In PHOENIX CONTACT Automationworx Software Suite up to version 1.89 manipulated PC Worx or Config+ files could lead to a heap buffer overflow and a read access violation. Availability, integrity, or confidentiality of an application programming workstation might be compromised by attacks using these vulnerabilities. En PHOENIX CONTACT Automationworx Software Suite hasta la versión 1.89, los archivos PC Worx o Config+ manipulados podían provocar un desbordamiento del búfer de pila y una violación del acceso ... • https://cert.vde.com/en/advisories/VDE-2022-048 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-3737 – Out-of-bounds Read in PHOENIX CONTACT Automationworx Software Suite
https://notcve.org/view.php?id=CVE-2022-3737
15 Nov 2022 — In PHOENIX CONTACT Automationworx Software Suite up to version 1.89 memory can be read beyond the intended scope due to insufficient validation of input data. Availability, integrity, or confidentiality of an application programming workstation might be compromised by attacks using these vulnerabilities. En PHOENIX CONTACT Automationworx Software Suite hasta la versión 1.89 la memoria puede leerse más allá de lo previsto debido a una validación insuficiente de los datos de entrada. La disponibilidad, la int... • https://cert.vde.com/en/advisories/VDE-2022-048 • CWE-125: Out-of-bounds Read •