Phoenix Contact Automation Worx vulnerabilities
2 known vulnerabilities affecting phoenix_contact/automation_worx.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2020-12497HIGHCVSS 7.8≥ unspecified, ≤ 1.872020-07-01
CVE-2020-12497 [HIGH] CWE-121 CVE-2020-12497: PLCopen XML file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and earlier can
PLCopen XML file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and earlier can lead to a stack-based overflow. Manipulated PC Worx projects could lead to a remote code execution due to insufficient input data validation.
cvelistv5nvd
CVE-2020-12498HIGHCVSS 7.8≥ unspecified, ≤ 1.872020-07-01
CVE-2020-12498 [HIGH] CWE-121 CVE-2020-12498: mwe file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and earlier is vulnerab
mwe file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and earlier is vulnerable to out-of-bounds read remote code execution. Manipulated PC Worx projects could lead to a remote code execution due to insufficient input data validation.
cvelistv5nvd