Phoenixcontact

Axc F 2152

6 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.22%
  • Veröffentlicht 27.05.2026 07:18:28
  • Zuletzt bearbeitet 27.05.2026 14:53:22

The Web-based Management allows a remote low privileged Engineer user to install additional APPs on the device downloaded from the PLCnext Store without implementing any data verification mechanism, leading to the capability for an Engineer user to r...

  • EPSS 0.19%
  • Veröffentlicht 27.05.2026 07:17:43
  • Zuletzt bearbeitet 27.05.2026 14:53:22

A local user with low privileges may be able to influence the behavior of a privileged system service by manipulating configuration or application-related files located in user-writable areas of the filesystem. The affected service processes data fro...

  • EPSS 0.5%
  • Veröffentlicht 08.07.2025 07:04:22
  • Zuletzt bearbeitet 15.04.2026 00:35:42

A low privileged remote attacker with file access can replace a critical file or folder used by the service security-profile to get read, write and execute access to any file on the device.

  • EPSS 0.5%
  • Veröffentlicht 08.07.2025 07:03:50
  • Zuletzt bearbeitet 15.04.2026 00:35:42

A low privileged remote attacker with file access can replace a critical file used by the arp-preinit script to get read, write and execute access to any file on the device.

  • EPSS 0.5%
  • Veröffentlicht 08.07.2025 07:03:38
  • Zuletzt bearbeitet 15.04.2026 00:35:42

A low privileged remote attacker with file access can replace a critical file used by the watchdog to get read, write and execute access to any file on the device after the watchdog has been initialized.

  • EPSS 0.3%
  • Veröffentlicht 08.07.2025 07:03:26
  • Zuletzt bearbeitet 15.04.2026 00:35:42

An low privileged remote attacker can enforce the watchdog of the affected devices to reboot the PLC due to incorrect default permissions of a config file.