CVE-2018-10728

CWE-119Buffer Overflow3 documents3 sources
Severity
8.1HIGH
EPSS
1.3%
top 20.22%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
29
Phoenixcontact FL Switch 3004t-fx FirmwarePhoenixcontact FL Switch 3004t-fx ST FirmwarePhoenixcontact FL Switch 3005 Firmware+26 more
Timeline
PublishedMay 17
Latest updateMay 14

Description

All Phoenix Contact managed FL SWITCH 3xxx, 4xxx, 48xx products running firmware version 1.0 to 1.33 are prone to buffer overflows (a different vulnerability than CVE-2018-10731).

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.2 | Impact: 5.9

Affected Packages29 packages

Patches

Patch: cert.vde.comPatch: ics-cert.us-cert.govPatch: cert.vde.com

🔴Vulnerability Details

2
GHSA
GHSA-rwm3-gq5c-p5rr: All Phoenix Contact managed FL SWITCH 3xxx, 4xxx, 48xx products running firmware version 12022-05-14
CVEList
CVE-2018-10728: All Phoenix Contact managed FL SWITCH 3xxx, 4xxx, 48xx products running firmware version 12018-05-17
CVE-2018-10728 (HIGH CVSS 8.1) | All Phoenix Contact managed FL SWIT | cvebase.io