cbcvebase.
CVE-2023-46141
published 2023-12-14

CVE-2023-46141: Incorrect Permission Assignment for Critical Resource vulnerability in multiple products of the PHOENIX CONTACT classic line allow an remote unauthenticated…

critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Incorrect Permission Assignment for Critical Resource vulnerability in multiple products of the PHOENIX CONTACT classic line allow an remote unauthenticated attacker to gain full access of the affected device.

Affected

18 ranges
VendorProductVersion rangeFixed in
phoenix_contactautomation_worx_software_suite
phoenix_contactaxc_1050
phoenix_contactaxc_1050_xc
phoenix_contactaxc_3050
phoenix_contactconfig
phoenix_contactfc_350_pci_eth
phoenix_contactilc1x0
phoenix_contactilc1x1
phoenix_contactilc_3xx
phoenix_contactpc_worx
phoenix_contactpc_worx_express
phoenix_contactpc_worx_rt_basic
phoenix_contactpc_worx_srt
phoenix_contactrfc_430_eth-ib
phoenix_contactrfc_450_eth-ib
phoenix_contactrfc_460r_pn_3tx
phoenix_contactrfc_470s_pn_3tx
phoenix_contactrfc_480s_pn_4tx