Phoenix Contact Axc F 2152 vulnerabilities

CVE-2025-41667 [HIGH] CWE-59 CVE-2025-41667: A low privileged remote attacker with file access can replace a critical file used by the arp-preini A low privileged remote attacker with file access can replace a critical file used by the arp-preinit script to get read, write and execute access to any file on the device.

CVE-2025-41666 [HIGH] CWE-59 CVE-2025-41666: A low privileged remote attacker with file access can replace a critical file used by the watchdog t A low privileged remote attacker with file access can replace a critical file used by the watchdog to get read, write and execute access to any file on the device after the watchdog has been initialized.

CVE-2025-41668 [HIGH] CWE-59 CVE-2025-41668: A low privileged remote attacker with file access can replace a critical file or folder used by the A low privileged remote attacker with file access can replace a critical file or folder used by the service security-profile to get read, write and execute access to any file on the device.

CVE-2025-41665 [MEDIUM] CWE-276 CVE-2025-41665: An low privileged remote attacker can enforce the watchdog of the affected devices to reboot the PLC An low privileged remote attacker can enforce the watchdog of the affected devices to reboot the PLC due to incorrect default permissions of a config file.

CVE-2023-46142 [HIGH] CWE-732 CVE-2023-46142: A incorrect permission assignment for critical resource vulnerability in PLCnext products allows an A incorrect permission assignment for critical resource vulnerability in PLCnext products allows an remote attacker with low privileges to gain full access on the affected devices.

CVE-2023-46144 [MEDIUM] CWE-494 CVE-2023-46144: A download of code without integrity check vulnerability in PLCnext products allows an remote attack A download of code without integrity check vulnerability in PLCnext products allows an remote attacker with low privileges to compromise integrity on the affected engineering station and the connected devices.