CVE-2021-34570
published 2021-09-27CVE-2021-34570: Multiple Phoenix Contact PLCnext control devices in versions prior to 2021.0.5 LTS are prone to a DoS attack through special crafted JSON requests.
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
Multiple Phoenix Contact PLCnext control devices in versions prior to 2021.0.5 LTS are prone to a DoS attack through special crafted JSON requests.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phoenix_contact | axc_f | >= AXC F 1152 (1151412) < 2021.0.5 LTS | 2021.0.5 LTS |
| phoenix_contact | axc_f | >= AXC F 2152 (2404267) < 2021.0.5 LTS | 2021.0.5 LTS |
| phoenix_contact | axc_f | >= AXC F 2152 Starterkit (1046568) < 2021.0.5 LTS | 2021.0.5 LTS |
| phoenix_contact | axc_f | >= AXC F 3152 (1069208) < 2021.0.5 LTS | 2021.0.5 LTS |
| phoenix_contact | plcnext | >= PLCnext Technology Starterkit (1188165) < 2021.0.5 LTS | 2021.0.5 LTS |
| phoenix_contact | rfc | >= RFC 4072S (1051328) < 2021.0.5 LTS | 2021.0.5 LTS |
| phoenixcontact | axc_f_1152_firmware | < 2021.0.5 | 2021.0.5 |
| phoenixcontact | axc_f_2152_firmware | < 2021.0.5 | 2021.0.5 |
| phoenixcontact | axc_f_2152_starterkit_firmware | < 2021.0.5 | 2021.0.5 |
| phoenixcontact | axc_f_3152_firmware | < 2021.0.5 | 2021.0.5 |
| phoenixcontact | plcnext_technology_starterkit_firmware | < 2021.0.5 | 2021.0.5 |
| phoenixcontact | rfc_4072s_firmware | < 2021.0.5 | 2021.0.5 |