CVE-2025-41692

EPSS 0.02%
Veröffentlicht 09.12.2025 08:12:40
Zuletzt bearbeitet 19.12.2025 18:11:54
Quelle info@cert.vde.com
CVE-Watchlists
Login
Unerledigt
Login

A high privileged remote attacker with admin privileges for the webUI can brute-force the "root" and "user" passwords of the underlying OS due to a weak password generation algorithm.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Phoenixcontact ≫ Fl Switch 2708 Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2708 Pn Version-

Phoenixcontact ≫ Fl Switch 2708 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2708 Version-

Phoenixcontact ≫ Fl Switch 2608 Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2608 Pn Version-

Phoenixcontact ≫ Fl Switch 2608 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2608 Version-

Phoenixcontact ≫ Fl Switch 2516 Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2516 Pn Version-

Phoenixcontact ≫ Fl Switch 2208c Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2208c Version-

Phoenixcontact ≫ Fl Switch 2208 Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2208 Pn Version-

Phoenixcontact ≫ Fl Switch 2208 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2208 Version-

Phoenixcontact ≫ Fl Switch 2207-fx Sm Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2207-fx Sm Version-

Phoenixcontact ≫ Fl Switch 2207-fx Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2207-fx Version-

Phoenixcontact ≫ Fl Switch 2206c-2fx Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2206c-2fx Version-

Phoenixcontact ≫ Fl Switch 2206-2sfx Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2206-2sfx Pn Version-

Phoenixcontact ≫ Fl Switch 2206-2sfx Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2206-2sfx Version-

Phoenixcontact ≫ Fl Switch 2206-2fx St Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2206-2fx St Version-

Phoenixcontact ≫ Fl Switch 2206-2fx Sm St Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2206-2fx Sm St Version-

Phoenixcontact ≫ Fl Switch 2206-2fx Sm Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2206-2fx Sm Version-

Phoenixcontact ≫ Fl Switch 2206-2fx Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2206-2fx Version-

Phoenixcontact ≫ Fl Switch 2205 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2205 Version-

Phoenixcontact ≫ Fl Switch 2204-2tc-2sfx Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2204-2tc-2sfx Version-

Phoenixcontact ≫ Fl Switch 2116 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2116 Version-

Phoenixcontact ≫ Fl Switch 2108 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2108 Version-

Phoenixcontact ≫ Fl Switch 2105 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2105 Version-

Phoenixcontact ≫ Fl Switch 2016 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2016 Version-

Phoenixcontact ≫ Fl Switch 2008f Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2008f Version-

Phoenixcontact ≫ Fl Switch 2008 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2008 Version-

Phoenixcontact ≫ Fl Switch 2005 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2005 Version-

Phoenixcontact ≫ Fl Nat 2304-2gc-2sfp Firmware Version < 3.50

Phoenixcontact ≫ Fl Nat 2304-2gc-2sfp Version-

Phoenixcontact ≫ Fl Nat 2208 Firmware Version < 3.50

Phoenixcontact ≫ Fl Nat 2208 Version-

Phoenixcontact ≫ Fl Nat 2008 Firmware Version < 3.50

Phoenixcontact ≫ Fl Nat 2008 Version-

Phoenixcontact ≫ Fl Switch 2516 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2516 Version-

Phoenixcontact ≫ Fl Switch 2514-2sfp Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2514-2sfp Pn Version-

Phoenixcontact ≫ Fl Switch 2514-2sfp Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2514-2sfp Version-

Phoenixcontact ≫ Fl Switch 2512-2gc-2sfp Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2512-2gc-2sfp Version-

Phoenixcontact ≫ Fl Switch 2508 Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2508 Pn Version-

Phoenixcontact ≫ Fl Switch 2508 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2508 Version-

Phoenixcontact ≫ Fl Switch 2506-2sfp Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2506-2sfp Pn Version-

Phoenixcontact ≫ Fl Switch 2506-2sfp Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2506-2sfp Version-

Phoenixcontact ≫ Fl Switch 2504-2gc-2sfp Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2504-2gc-2sfp Version-

Phoenixcontact ≫ Fl Switch 2416 Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2416 Pn Version-

Phoenixcontact ≫ Fl Switch 2416 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2416 Version-

Phoenixcontact ≫ Fl Switch 2414-2sfx Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2414-2sfx Pn Version-

Phoenixcontact ≫ Fl Switch 2414-2sfx Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2414-2sfx Version-

Phoenixcontact ≫ Fl Switch 2412-2tc-2sfx Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2412-2tc-2sfx Version-

Phoenixcontact ≫ Fl Switch 2408 Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2408 Pn Version-

Phoenixcontact ≫ Fl Switch 2408 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2408 Version-

Phoenixcontact ≫ Fl Switch 2406-2sfx Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2406-2sfx Pn Version-

Phoenixcontact ≫ Fl Switch 2406-2sfx Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2406-2sfx Version-

Phoenixcontact ≫ Fl Switch 2404-2tc-2sfx Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2404-2tc-2sfx Version-

Phoenixcontact ≫ Fl Switch 2316 Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2316 Pn Version-

Phoenixcontact ≫ Fl Switch 2316 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2316 Version-

Phoenixcontact ≫ Fl Switch 2314-2sfp Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2314-2sfp Pn Version-

Phoenixcontact ≫ Fl Switch 2314-2sfp Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2314-2sfp Version-

Phoenixcontact ≫ Fl Switch 2312-2gc-2sfp Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2312-2gc-2sfp Version-

Phoenixcontact ≫ Fl Switch 2308 Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2308 Pn Version-

Phoenixcontact ≫ Fl Switch 2308 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2308 Version-

Phoenixcontact ≫ Fl Switch 2306-2sfp Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2306-2sfp Pn Version-

Phoenixcontact ≫ Fl Switch 2306-2sfp Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2306-2sfp Version-

Phoenixcontact ≫ Fl Switch 2304-2gc-2sfp Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2304-2gc-2sfp Version-

Phoenixcontact ≫ Fl Switch 2303-8sp1 Version < 3.50

Phoenixcontact ≫ Fl Switch 2303-8sp1 Version-

Phoenixcontact ≫ Fl Switch 2216 Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2216 Pn Version-

Phoenixcontact ≫ Fl Switch 2216 Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2216 Version-

Phoenixcontact ≫ Fl Switch 2214-2sfx Pn Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2214-2sfx Pn Version-

Phoenixcontact ≫ Fl Switch 2214-2sfx Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2214-2sfx Version-

Phoenixcontact ≫ Fl Switch 2214-2fx Sm Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2214-2fx Sm Version-

Phoenixcontact ≫ Fl Switch 2214-2fx Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2214-2fx Version-

Phoenixcontact ≫ Fl Switch 2212-2tc-2sfx Firmware Version < 3.50

Phoenixcontact ≫ Fl Switch 2212-2tc-2sfx Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.051

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
info@cert.vde.com	6.8	2.3	4	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

CWE-916 Use of Password Hash With Insufficient Computational Effort

The product generates a hash for a password, but it uses a scheme that does not provide a sufficient level of computational effort that would make password cracking attacks infeasible or expensive.

https://certvde.com/de/advisories/VDE-2025-071

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-41692

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-41692

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-41692

EUVD