7.8
CVE-2025-24005
- EPSS 0.07%
- Veröffentlicht 08.07.2025 06:59:45
- Zuletzt bearbeitet 11.07.2025 14:36:07
- Quelle info@cert.vde.com
- CVE-Watchlists
- Unerledigt
Local Privilege Escalation via Vulnerable SSH Script
A local attacker with a local user account can leverage a vulnerable script via SSH to escalate privileges to root due to improper input validation.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Phoenixcontact ≫ Charx Sec-3000 Firmware Version < 1.7.3
Phoenixcontact ≫ Charx Sec-3050 Firmware Version < 1.7.3
Phoenixcontact ≫ Charx Sec-3100 Firmware Version < 1.7.3
Phoenixcontact ≫ Charx Sec-3150 Firmware Version < 1.7.3
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.07% | 0.21 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| info@cert.vde.com | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.