cbcvebase.
CVE-2025-24005
published 2025-07-08

CVE-2025-24005: A local attacker with a local user account can leverage a vulnerable script via SSH to escalate privileges to root due to improper input validation.

high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
A local attacker with a local user account can leverage a vulnerable script via SSH to escalate privileges to root due to improper input validation.

Affected

8 ranges
VendorProductVersion rangeFixed in
phoenix_contactcharx_sec-3000>= 0.0.0 < 1.7.31.7.3
phoenix_contactcharx_sec-3050>= 0.0.0 < 1.7.31.7.3
phoenix_contactcharx_sec-3100>= 0.0.0 < 1.7.31.7.3
phoenix_contactcharx_sec-3150>= 0.0.0 < 1.7.31.7.3
phoenixcontactcharx_sec-3000_firmware< 1.7.31.7.3
phoenixcontactcharx_sec-3050_firmware< 1.7.31.7.3
phoenixcontactcharx_sec-3100_firmware< 1.7.31.7.3
phoenixcontactcharx_sec-3150_firmware< 1.7.31.7.3