CVE-2026-22317: A command injection vulnerability in the device’s Root CA certificate transfer workflow allows a high-privileged attacker to send crafted HTTP POST requests…

high7.2CVSS 3.1

AVNACLPRHUINSUCHIHAH

A command injection vulnerability in the device’s Root CA certificate transfer workflow allows a high-privileged attacker to send crafted HTTP POST requests that result in arbitrary command execution on the underlying Linux OS with root privileges.

Affected

77 ranges· showing 25

Vendor	Product	Version range	Fixed in
phoenix_contact	fl_nat_2008	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_nat_2208	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_nat_2304-2gc-2sfp	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2005	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2008	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2008f	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2016	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2105	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2108	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2116	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2204-2tc-2sfx	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2205	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2206-2fx	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2206-2fx_sm	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2206-2fx_sm_st	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2206-2fx_st	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2206-2sfx	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2206-2sfx_pn	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2206c-2fx	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2207-fx	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2207-fx_sm	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2208	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2208_pn	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2208c	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2212-2tc-2sfx	>= 0.0.0 < 3.53	3.53