~/cve/CVE-2022-22509

pipeline liveDigest Docs

CVE-2022-22509

published 2022-02-02

CVE-2022-22509: In Phoenix Contact FL SWITCH Series 2xxx in version 3.00 an incorrect privilege assignment allows an low privileged user to enable full access to the device…

high8.8CVSS 3.1

AVNACLPRLUINSUCHIHAH

In Phoenix Contact FL SWITCH Series 2xxx in version 3.00 an incorrect privilege assignment allows an low privileged user to enable full access to the device configuration.

Affected

65 ranges· showing 25

Vendor	Product	Version range	Fixed in
phoenixcontact	fl_switch_2005_firmware	—	—
phoenixcontact	fl_switch_2008_firmware	—	—
phoenixcontact	fl_switch_2008f_firmware	—	—
phoenixcontact	fl_switch_2016_firmware	—	—
phoenixcontact	fl_switch_2105_firmware	—	—
phoenixcontact	fl_switch_2108_firmware	—	—
phoenixcontact	fl_switch_2116_firmware	—	—
phoenixcontact	fl_switch_2204-2tc-2sfx_firmware	—	—
phoenixcontact	fl_switch_2205_firmware	—	—
phoenixcontact	fl_switch_2206-2fx_firmware	—	—
phoenixcontact	fl_switch_2206-2fx_sm_firmware	—	—
phoenixcontact	fl_switch_2206-2fx_sm_st_firmware	—	—
phoenixcontact	fl_switch_2206-2fx_st_firmware	—	—
phoenixcontact	fl_switch_2206-2sfx_firmware	—	—
phoenixcontact	fl_switch_2206-2sfx_pn_firmware	—	—
phoenixcontact	fl_switch_2206c-2fx_firmware	—	—
phoenixcontact	fl_switch_2207-fx_firmware	—	—
phoenixcontact	fl_switch_2207-fx_sm_firmware	—	—
phoenixcontact	fl_switch_2208_firmware	—	—
phoenixcontact	fl_switch_2208_pn_firmware	—	—
phoenixcontact	fl_switch_2208c_firmware	—	—
phoenixcontact	fl_switch_2212-2tc-2sfx_firmware	—	—
phoenixcontact	fl_switch_2214-2fx_firmware	—	—
phoenixcontact	fl_switch_2214-2fx_sm_firmware	—	—
phoenixcontact	fl_switch_2214-2sfx_firmware	—	—