CVE-2024-6788

CWE-1392 CWE-11883 documents3 sources

Severity

9.8CRITICAL

EPSS

4.5%

top 10.82%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Phoenix Contact Charx Sec-3000 Phoenix Contact Charx Sec-3050 Phoenix Contact Charx Sec-3100 +5 more

Timeline

PublishedAug 13

Description

A remote unauthenticated attacker can use the firmware update feature on the LAN interface of the device to reset the password for the predefined, low-privileged user “user-app” to the default password.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:HExploitability: 3.9 | Impact: 4.7

Affected Packages8 packages

▶NVDphoenixcontact/charx_sec-3000_firmware< 1.6.3

▶NVDphoenixcontact/charx_sec-3050_firmware< 1.6.3

▶NVDphoenixcontact/charx_sec-3100_firmware< 1.6.3

▶NVDphoenixcontact/charx_sec-3150_firmware< 1.6.3

▶CVEListV5phoenix_contact/charx_sec-3000< 1.6.3

🔴Vulnerability Details

CVEList

Phoenix Contact: update feature from CHARX controller can be used to reset a low privilege user password↗2024-08-13

▶

GHSA

GHSA-xpwm-vrv5-5mgm: A remote unauthenticated attacker can use the firmware update feature on the LAN interface of the device to reset the password for the predefined, low↗2024-08-13

▶