CVE-2023-3569
published 2023-08-08CVE-2023-3569: In PHOENIX CONTACTs TC ROUTER and TC CLOUD CLIENT in versions prior to 2.07.2 as well as CLOUD CLIENT 1101T-TX/TX prior to 2.06.10 an authenticated remote…
medium4.9CVSS 3.1
AVNACLPRHUINSUCNINAH
In PHOENIX CONTACTs TC ROUTER and TC CLOUD CLIENT in versions prior to 2.07.2 as well as CLOUD CLIENT 1101T-TX/TX prior to 2.06.10 an authenticated remote attacker with admin privileges could upload a crafted XML file which causes a denial-of-service.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phoenix_contact | cloud_client_1101t-tx_tx | < 2.06.10 | 2.06.10 |
| phoenix_contact | tc_cloud_client_1002-4g | < 2.07.2 | 2.07.2 |
| phoenix_contact | tc_cloud_client_1002-4g_att | < 2.07.2 | 2.07.2 |
| phoenix_contact | tc_cloud_client_1002-4g_vzw | < 2.07.2 | 2.07.2 |
| phoenix_contact | tc_router_3002t-4g | < 2.07.2 | 2.07.2 |
| phoenix_contact | tc_router_3002t-4g_att | < 2.07.2 | 2.07.2 |
| phoenix_contact | tc_router_3002t-4g_vzw | < 2.07.2 | 2.07.2 |
| phoenixcontact | cloud_client_1101t-tx_firmware | < 2.06.10 | 2.06.10 |
| phoenixcontact | tc_cloud_client_1002-4g_att_firmware | < 2.07.2 | 2.07.2 |
| phoenixcontact | tc_cloud_client_1002-4g_firmware | < 2.07.2 | 2.07.2 |
| phoenixcontact | tc_cloud_client_1002-4g_vzw_firmware | < 2.07.2 | 2.07.2 |
| phoenixcontact | tc_router_3002t-4g_att_firmware | < 2.07.2 | 2.07.2 |
| phoenixcontact | tc_router_3002t-4g_firmware | < 2.07.2 | 2.07.2 |
| phoenixcontact | tc_router_3002t-4g_vzw_firmware | < 2.07.2 | 2.07.2 |