// For flags

CVE-2022-31800

Insufficient Verification of Data Vulnerability in PHOENIX CONTACT classic line industrial controllers

Severity Score

9.8
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

An unauthenticated, remote attacker could upload malicious logic to devices based on ProConOS/ProConOS eCLR in order to gain full control over the device.

Un atacante remoto no autenticado podría cargar lógica maliciosa en los dispositivos basados en ProConOS/ProConOS eCLR para conseguir el control total del dispositivo

*Credits: This vulnerability was reported by Forescout.
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2022-05-30 CVE Reserved
  • 2022-06-21 CVE Published
  • 2024-09-11 EPSS Updated
  • 2024-09-16 CVE Updated
  • 2024-09-16 First Exploit
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-345: Insufficient Verification of Data Authenticity
CAPEC
References (1)
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Phoenixcontact
Search vendor "Phoenixcontact"
Axc 1050 Firmware
Search vendor "Phoenixcontact" for product "Axc 1050 Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Axc 1050
Search vendor "Phoenixcontact" for product "Axc 1050"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Axc 1050 Xc Firmware
Search vendor "Phoenixcontact" for product "Axc 1050 Xc Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Axc 1050 Xc
Search vendor "Phoenixcontact" for product "Axc 1050 Xc"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Axc 3050 Firmware
Search vendor "Phoenixcontact" for product "Axc 3050 Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Axc 3050
Search vendor "Phoenixcontact" for product "Axc 3050"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Fc 350 Pci Eth Firmware
Search vendor "Phoenixcontact" for product "Fc 350 Pci Eth Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Fc 350 Pci Eth
Search vendor "Phoenixcontact" for product "Fc 350 Pci Eth"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Ilc1x0 Firmware
Search vendor "Phoenixcontact" for product "Ilc1x0 Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Ilc1x0
Search vendor "Phoenixcontact" for product "Ilc1x0"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Ilc1x1 Firmware
Search vendor "Phoenixcontact" for product "Ilc1x1 Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Ilc1x1
Search vendor "Phoenixcontact" for product "Ilc1x1"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Ilc 1x1 Gsm\/gprs Firmware
Search vendor "Phoenixcontact" for product "Ilc 1x1 Gsm\/gprs Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Ilc 1x1 Gsm\/gprs
Search vendor "Phoenixcontact" for product "Ilc 1x1 Gsm\/gprs"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Ilc 3xx Firmware
Search vendor "Phoenixcontact" for product "Ilc 3xx Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Ilc 3xx
Search vendor "Phoenixcontact" for product "Ilc 3xx"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Pc Worx Rt Basic Firmware
Search vendor "Phoenixcontact" for product "Pc Worx Rt Basic Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Pc Worx Rt Basic
Search vendor "Phoenixcontact" for product "Pc Worx Rt Basic"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Pc Worx Srt Firmware
Search vendor "Phoenixcontact" for product "Pc Worx Srt Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Pc Worx Srt
Search vendor "Phoenixcontact" for product "Pc Worx Srt"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Rfc 430 Eth-ib Firmware
Search vendor "Phoenixcontact" for product "Rfc 430 Eth-ib Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Rfc 430 Eth-ib
Search vendor "Phoenixcontact" for product "Rfc 430 Eth-ib"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Rfc 450 Eth-ib Firmware
Search vendor "Phoenixcontact" for product "Rfc 450 Eth-ib Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Rfc 450 Eth-ib
Search vendor "Phoenixcontact" for product "Rfc 450 Eth-ib"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Rfc 460r Pn 3tx Firmware
Search vendor "Phoenixcontact" for product "Rfc 460r Pn 3tx Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Rfc 460r Pn 3tx
Search vendor "Phoenixcontact" for product "Rfc 460r Pn 3tx"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Rfc 460r Pn 3tx-s Firmware
Search vendor "Phoenixcontact" for product "Rfc 460r Pn 3tx-s Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Rfc 460r Pn 3tx-s
Search vendor "Phoenixcontact" for product "Rfc 460r Pn 3tx-s"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Rfc 470 Pn 3tx Firmware
Search vendor "Phoenixcontact" for product "Rfc 470 Pn 3tx Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Rfc 470 Pn 3tx
Search vendor "Phoenixcontact" for product "Rfc 470 Pn 3tx"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Rfc 470s Pn 3tx Firmware
Search vendor "Phoenixcontact" for product "Rfc 470s Pn 3tx Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Rfc 470s Pn 3tx
Search vendor "Phoenixcontact" for product "Rfc 470s Pn 3tx"
--
Safe
Phoenixcontact
Search vendor "Phoenixcontact"
Rfc 480s Pn 4tx Firmware
Search vendor "Phoenixcontact" for product "Rfc 480s Pn 4tx Firmware"
*-
Affected
in Phoenixcontact
Search vendor "Phoenixcontact"
Rfc 480s Pn 4tx
Search vendor "Phoenixcontact" for product "Rfc 480s Pn 4tx"
--
Safe