Phoenix Contact Fl Nat vulnerabilities
3 known vulnerabilities affecting phoenix_contact/fl_nat.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2021-21005HIGHCVSS 7.5≥ SMN 8TX (2989365), ≤ 4.63≥ SMN 8TX-M (2702443), ≤ 4.632021-06-25
CVE-2021-21005 [HIGH] CWE-362 CVE-2021-21005: In Phoenix Contact FL SWITCH SMCS series products in multiple versions if an attacker sends a hand-c
In Phoenix Contact FL SWITCH SMCS series products in multiple versions if an attacker sends a hand-crafted TCP-Packet with the Urgent-Flag set and the Urgent-Pointer set to 0, the network stack will crash. The device needs to be rebooted afterwards.
cvelistv5nvd
CVE-2021-21004MEDIUMCVSS 6.1≥ SMN 8TX (2989365), ≤ 4.63≥ SMN 8TX-M (2702443), ≤ 4.632021-06-25
CVE-2021-21004 [HIGH] CWE-79 CVE-2021-21004: In Phoenix Contact FL SWITCH SMCS series products in multiple versions an attacker may insert malici
In Phoenix Contact FL SWITCH SMCS series products in multiple versions an attacker may insert malicious code via LLDP frames into the web-based management which could then be executed by the client.
cvelistv5nvd
CVE-2021-21003MEDIUMCVSS 5.3≥ SMN 8TX (2989365), ≤ 4.63≥ SMN 8TX-M (2702443), ≤ 4.632021-06-25
CVE-2021-21003 [MEDIUM] CWE-404 CVE-2021-21003: In Phoenix Contact FL SWITCH SMCS series products in multiple versions fragmented TCP-Packets may ca
In Phoenix Contact FL SWITCH SMCS series products in multiple versions fragmented TCP-Packets may cause a Denial of Service of Web-, SNMP- and ICMP-Echo services. The switching functionality of the device is not affected.
cvelistv5nvd