CVE-2024-28133

CWE-4263 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 81.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
8
Phoenix Contact Charx Sec-3000Phoenix Contact Charx Sec-3050Phoenix Contact Charx Sec-3100+5 more
Timeline
PublishedMay 14

Description

A local low privileged attacker can use an untrusted search path in a CHARX system utility to gain root privileges.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages8 packages

🔴Vulnerability Details

2
GHSA
GHSA-j4qc-xg6g-j9fh: A local low privileged attacker can use an untrusted search path in a CHARX system utility to gain root privileges2024-05-14
CVEList
PHOENIX CONTACT: Privilege escalation in CHARX Series2024-05-14
CVE-2024-28133 (HIGH CVSS 7.8) | A local low privileged attacker can | cvebase.io