CVE-2026-22318: A stack-based buffer overflow vulnerability in the device's file transfer parameter workflow allows a high-privileged attacker to send oversized POST…

medium4.9CVSS 3.1

AVNACLPRHUINSUCNINAH

A stack-based buffer overflow vulnerability in the device's file transfer parameter workflow allows a high-privileged attacker to send oversized POST parameters, causing memory corruption in an internal process, resulting in a DoS attack.

Affected

77 ranges· showing 25

Vendor	Product	Version range	Fixed in
phoenix_contact	fl_nat_2008	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_nat_2208	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_nat_2304-2gc-2sfp	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2005	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2008	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2008f	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2016	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2105	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2108	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2116	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2204-2tc-2sfx	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2205	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2206-2fx	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2206-2fx_sm	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2206-2fx_sm_st	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2206-2fx_st	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2206-2sfx	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2206-2sfx_pn	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2206c-2fx	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2207-fx	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2207-fx_sm	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2208	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2208_pn	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2208c	>= 0.0.0 < 3.53	3.53
phoenix_contact	fl_switch_2212-2tc-2sfx	>= 0.0.0 < 3.53	3.53