CVE-2020-12519
published 2020-12-17CVE-2020-12519: On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use this vulnerability i.e. to open a reverse shell with root privileges.
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use this vulnerability i.e. to open a reverse shell with root privileges.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phoenix_contact | axc_f_1152 | >= unspecified < 2021.0 LTS | 2021.0 LTS |
| phoenix_contact | axc_f_2152 | >= unspecified < 2021.0 LTS | 2021.0 LTS |
| phoenix_contact | axc_f_2152_starterkit | >= unspecified < 2021.0 LTS | 2021.0 LTS |
| phoenix_contact | axc_f_3152 | >= unspecified < 2021.0 LTS | 2021.0 LTS |
| phoenix_contact | plcnext_technology_starterkit | >= unspecified < 2021.0 LTS | 2021.0 LTS |
| phoenix_contact | rfc_4072s_1051328 | >= unspecified < 2021.0 LTS | 2021.0 LTS |
| phoenixcontact | plcnext_firmware | < 2021.0 | 2021.0 |