6.8
CVE-2025-41692
- EPSS 0.02%
- Veröffentlicht 09.12.2025 08:12:40
- Zuletzt bearbeitet 19.12.2025 18:11:54
- Quelle info@cert.vde.com
- CVE-Watchlists
- Unerledigt
Weak/Predictable root Password
A high privileged remote attacker with admin privileges for the webUI can brute-force the "root" and "user" passwords of the underlying OS due to a weak password generation algorithm.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Phoenixcontact ≫ Fl Switch 2708 Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2708 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2608 Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2608 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2516 Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2208c Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2208 Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2208 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2207-fx Sm Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2207-fx Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2206c-2fx Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2206-2sfx Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2206-2sfx Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2206-2fx St Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2206-2fx Sm St Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2206-2fx Sm Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2206-2fx Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2205 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2204-2tc-2sfx Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2116 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2108 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2105 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2016 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2008f Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2008 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2005 Firmware Version < 3.50
Phoenixcontact ≫ Fl Nat 2304-2gc-2sfp Firmware Version < 3.50
Phoenixcontact ≫ Fl Nat 2208 Firmware Version < 3.50
Phoenixcontact ≫ Fl Nat 2008 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2516 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2514-2sfp Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2514-2sfp Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2512-2gc-2sfp Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2508 Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2508 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2506-2sfp Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2506-2sfp Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2504-2gc-2sfp Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2416 Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2416 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2414-2sfx Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2414-2sfx Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2412-2tc-2sfx Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2408 Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2408 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2406-2sfx Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2406-2sfx Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2404-2tc-2sfx Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2316 Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2316 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2314-2sfp Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2314-2sfp Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2312-2gc-2sfp Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2308 Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2308 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2306-2sfp Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2306-2sfp Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2304-2gc-2sfp Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2303-8sp1 Version < 3.50
Phoenixcontact ≫ Fl Switch 2216 Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2216 Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2214-2sfx Pn Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2214-2sfx Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2214-2fx Sm Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2214-2fx Firmware Version < 3.50
Phoenixcontact ≫ Fl Switch 2212-2tc-2sfx Firmware Version < 3.50
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.065 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| info@cert.vde.com | 6.8 | 2.3 | 4 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
|
CWE-916 Use of Password Hash With Insufficient Computational Effort
The product generates a hash for a password, but it uses a scheme that does not provide a sufficient level of computational effort that would make password cracking attacks infeasible or expensive.