CVE-2025-41705
published 2025-10-14CVE-2025-41705: An unauthenticated remote attacker (MITM) can intercept the websocket messages to gain access to the login credentials for the Webfrontend.
medium6.8CVSS 3.1
AVNACHPRNUIRSUCHIHAN
An unauthenticated remote attacker (MITM) can intercept the websocket messages to gain access to the login credentials for the Webfrontend.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phoenix_contact | quint4-ups_24dc_24dc_10_eip | >= VC:00 < VC:07 | VC:07 |
| phoenix_contact | quint4-ups_24dc_24dc_20_eip | >= VC:00 < VC:07 | VC:07 |
| phoenix_contact | quint4-ups_24dc_24dc_40_eip | >= VC:00 < VC:07 | VC:07 |
| phoenix_contact | quint4-ups_24dc_24dc_5_eip | >= VC:00 < VC:07 | VC:07 |