~/products/phoenix_contact/axc_f_1152

pipeline liveDigest Docs

Phoenix Contact Axc F 1152 vulnerabilities

12 known vulnerabilities affecting phoenix_contact/axc_f_1152.

Total CVEs

12

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

CRITICAL2HIGH6MEDIUM4

Vulnerabilities

Page 1 of 1

CVE-2025-41670HIGHCVSS 8.7≥ 0.0.0, < 2026.0.32026-05-27

CVE-2025-41670 [HIGH] CWE-427 CVE-2025-41670: A local user with low privileges may be able to influence the behavior of a privileged system servic A local user with low privileges may be able to influence the behavior of a privileged system service by manipulating configuration or application-related files located in user-writable areas of the filesystem. The affected service processes data from locations that are not sufficiently protected against modification by low-privileged users. As the se

CVE-2025-41669HIGHCVSS 8.7≥ 0.0.0, < 2026.0.32026-05-27

CVE-2025-41669 [HIGH] CWE-347 CVE-2025-41669: The Web-based Management allows a remote low privileged Engineer user to install additional APPs on The Web-based Management allows a remote low privileged Engineer user to install additional APPs on the device downloaded from the PLCnext Store without implementing any data verification mechanism, leading to the capability for an Engineer user to reach arbitrary code execution with root privileges on the PLC device. A successful exploitation may allo

CVE-2025-41666HIGHCVSS 8.8fixed in 2025.0.22025-07-08

CVE-2025-41666 [HIGH] CWE-59 CVE-2025-41666: A low privileged remote attacker with file access can replace a critical file used by the watchdog t A low privileged remote attacker with file access can replace a critical file used by the watchdog to get read, write and execute access to any file on the device after the watchdog has been initialized.

CVE-2025-41668HIGHCVSS 8.8fixed in 2025.0.22025-07-08

CVE-2025-41668 [HIGH] CWE-59 CVE-2025-41668: A low privileged remote attacker with file access can replace a critical file or folder used by the A low privileged remote attacker with file access can replace a critical file or folder used by the service security-profile to get read, write and execute access to any file on the device.

CVE-2025-41667HIGHCVSS 8.8fixed in 2025.0.22025-07-08

CVE-2025-41667 [HIGH] CWE-59 CVE-2025-41667: A low privileged remote attacker with file access can replace a critical file used by the arp-preini A low privileged remote attacker with file access can replace a critical file used by the arp-preinit script to get read, write and execute access to any file on the device.

CVE-2025-41665MEDIUMCVSS 6.5fixed in 2025.0.22025-07-08

CVE-2025-41665 [MEDIUM] CWE-276 CVE-2025-41665: An low privileged remote attacker can enforce the watchdog of the affected devices to reboot the PLC An low privileged remote attacker can enforce the watchdog of the affected devices to reboot the PLC due to incorrect default permissions of a config file.

CVE-2023-46142HIGHCVSS 8.8≤ 2024.02023-12-14

CVE-2023-46142 [HIGH] CWE-732 CVE-2023-46142: A incorrect permission assignment for critical resource vulnerability in PLCnext products allows an A incorrect permission assignment for critical resource vulnerability in PLCnext products allows an remote attacker with low privileges to gain full access on the affected devices.

CVE-2023-46144MEDIUMCVSS 6.5≤ 2024.02023-12-14

CVE-2023-46144 [MEDIUM] CWE-494 CVE-2023-46144: A download of code without integrity check vulnerability in PLCnext products allows an remote attack A download of code without integrity check vulnerability in PLCnext products allows an remote attacker with low privileges to compromise integrity on the affected engineering station and the connected devices.

CVE-2020-12517CRITICALCVSS 9.0≥ unspecified, < 2021.0 LTS2020-12-17

CVE-2020-12517 [CRITICAL] CWE-79 CVE-2020-12517: On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an authenticated low privilege On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an authenticated low privileged user could embed malicious Javascript code to gain admin rights when the admin user visits the vulnerable website (local privilege escalation).

CVE-2020-12519CRITICALCVSS 9.8≥ unspecified, < 2021.0 LTS2020-12-17

CVE-2020-12519 [CRITICAL] CWE-269 CVE-2020-12519: On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use this vulne On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use this vulnerability i.e. to open a reverse shell with root privileges.

CVE-2020-12521MEDIUMCVSS 6.5≥ unspecified, < 2021.0 LTS2020-12-17

CVE-2020-12521 [MEDIUM] CWE-20 CVE-2020-12521: On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS a specially crafted LLDP packe On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS a specially crafted LLDP packet may lead to a high system load in the PROFINET stack. An attacker can cause failure of system services or a complete reboot.

CVE-2020-12518MEDIUMCVSS 5.5≥ unspecified, < 2021.0 LTS2020-12-17

CVE-2020-12518 [MEDIUM] CWE-200 CVE-2020-12518: On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use the knowle On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use the knowledge gained by reading the insufficiently protected sensitive information to plan further attacks.