cbcvebase.
CVE-2026-22320
published 2026-03-18

CVE-2026-22320: A stack-based buffer overflow in the CLI's TFTP file‑transfer command handling allows a low-privileged attacker with Telnet/SSH access to trigger memory…

medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
A stack-based buffer overflow in the CLI's TFTP file‑transfer command handling allows a low-privileged attacker with Telnet/SSH access to trigger memory corruption by supplying unexpected or oversized filename input. Exploitation results in the corruption of the internal buffer, causing the CLI and web dashboard to become unavailable and leading to a denial of service.

Affected

77 ranges· showing 25
VendorProductVersion rangeFixed in
phoenix_contactfl_nat_2008>= 0.0.0 < 3.533.53
phoenix_contactfl_nat_2208>= 0.0.0 < 3.533.53
phoenix_contactfl_nat_2304-2gc-2sfp>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2005>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2008>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2008f>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2016>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2105>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2108>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2116>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2204-2tc-2sfx>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2205>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2206-2fx>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2206-2fx_sm>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2206-2fx_sm_st>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2206-2fx_st>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2206-2sfx>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2206-2sfx_pn>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2206c-2fx>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2207-fx>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2207-fx_sm>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2208>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2208_pn>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2208c>= 0.0.0 < 3.533.53
phoenix_contactfl_switch_2212-2tc-2sfx>= 0.0.0 < 3.533.53