Phoenix Contact Rfc 4072S vulnerabilities

CVE-2025-41670 [HIGH] CWE-427 CVE-2025-41670: A local user with low privileges may be able to influence the behavior of a privileged system servic A local user with low privileges may be able to influence the behavior of a privileged system service by manipulating configuration or application-related files located in user-writable areas of the filesystem. The affected service processes data from locations that are not sufficiently protected against modification by low-privileged users. As the se

CVE-2025-41669 [HIGH] CWE-347 CVE-2025-41669: The Web-based Management allows a remote low privileged Engineer user to install additional APPs on The Web-based Management allows a remote low privileged Engineer user to install additional APPs on the device downloaded from the PLCnext Store without implementing any data verification mechanism, leading to the capability for an Engineer user to reach arbitrary code execution with root privileges on the PLC device. A successful exploitation may allo

CVE-2025-41666 [HIGH] CWE-59 CVE-2025-41666: A low privileged remote attacker with file access can replace a critical file used by the watchdog t A low privileged remote attacker with file access can replace a critical file used by the watchdog to get read, write and execute access to any file on the device after the watchdog has been initialized.

CVE-2025-41668 [HIGH] CWE-59 CVE-2025-41668: A low privileged remote attacker with file access can replace a critical file or folder used by the A low privileged remote attacker with file access can replace a critical file or folder used by the service security-profile to get read, write and execute access to any file on the device.

CVE-2025-41667 [HIGH] CWE-59 CVE-2025-41667: A low privileged remote attacker with file access can replace a critical file used by the arp-preini A low privileged remote attacker with file access can replace a critical file used by the arp-preinit script to get read, write and execute access to any file on the device.

CVE-2025-41665 [MEDIUM] CWE-276 CVE-2025-41665: An low privileged remote attacker can enforce the watchdog of the affected devices to reboot the PLC An low privileged remote attacker can enforce the watchdog of the affected devices to reboot the PLC due to incorrect default permissions of a config file.

CVE-2023-46142 [HIGH] CWE-732 CVE-2023-46142: A incorrect permission assignment for critical resource vulnerability in PLCnext products allows an A incorrect permission assignment for critical resource vulnerability in PLCnext products allows an remote attacker with low privileges to gain full access on the affected devices.

CVE-2023-46144 [MEDIUM] CWE-494 CVE-2023-46144: A download of code without integrity check vulnerability in PLCnext products allows an remote attack A download of code without integrity check vulnerability in PLCnext products allows an remote attacker with low privileges to compromise integrity on the affected engineering station and the connected devices.