PHOENIX CONTACT: Security Advisory for PLCNext, SMARTRTU AXC, CHARX control modular and EEM-SB37x

The vulnerability is a Time-of-Check-Time-of-Use (CWE-367) issue which allows an attacker with access to the firmware update file to overwrite it after it has been verified (but before installation is completed), which consequently allows installing an arbitrary firmware update, bypassing the cryptographic signature check mechanism.


CVE-2020-25860: 6.6

PHOENIX CONTACT: Security Advisory for FL SWITCH SMCS series

Multiple vulnerabilities have been discovered in the current firmware of the PHOENIX CONTACT FL SWITCH SMCS series switches.


CVE-2021-21005: 7.5
CVE-2021-21004: 6.1
CVE-2021-21003: 5.3

PHOENIX CONTACT: Security Advisory for FL COMSERVER UNI

When the communication partner sends an invalid Modbus exception response to the FL COMSERVER UNI as a query, the Modbus communication stops, and the device will be unresponsive for some minutes before the functionality is fully restored (CWE-772).


CVE-2021-21002: 7.5

PHOENIX CONTACT: Security Advisory for AXL F BK and IL BK products

An undocumented password protected FTP access to the root directory exists in certain devices of the AXL F BK and IL BK product families (CWE-798).


CVE-2021-33540: 7.3

PHOENIX CONTACT: Security Advisory for ILC1x1 Industrial controllers

Phoenix Contact Classic Line industrial controllers are developed and designed for the use in closed industrial networks. The communication protocols and device access do not feature authentication measures. Remote attackers can use specially crafted IP packets to cause a denial of service on the PLC's network communication module (CWE-770).


CVE-2021-33541: 7.5

PHOENIX CONTACT: Security Advisory for Automation Worx Software Suite

Manipulated PC Worx or Config+ projects could lead to a remote code execution when unallocated memory is freed because of incompletely initialized data (CWE-824).
The attacker needs to get access to an original bus configuration file (*.bcp) to be able to manipulate data inside. After manipulation the attacker needs to exchange the original file by the manipulated one on the application programming workstation.


CVE-2021-33542: 7.0

Weidmueller: Multiple vulnerabilities in Industrial WLAN devices (Update A)

Multiple issues in Weidmueller Industrial WLAN devices have been found.

Initial publication date: 2021-06-23
Update A publication date: 2021-07-02

Update A

CVE-2021-33534

CVSS: 7.2 (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)
Description: An exploitable command injection vulnerability exists in the hostname functionality of Weidmueller Industrial WLAN devices. A specially crafted entry to network configuration information can cause execution of arbitrary system commands, resulting in full control of the device. An attacker can send various requests while authenticated as a high privilege user to trigger this vulnerability.



CVE-2021-33531: 8.8
CVE-2021-33532: 8.8
CVE-2021-33537: 8.8
CVE-2021-33538: 8.8
CVE-2021-33533: 8.8
CVE-2021-33528: 8.8
CVE-2021-33535: 8.8
CVE-2021-33530: 8.8
CVE-2021-33529: 7.5
CVE-2021-33536: 7.5
CVE-2021-33539: 7.2
CVE-2021-33534: 7.2

WAGO: Multiple Vulnerabilities in CODESYS Runtime 2.3

Multiple vulnerabilities were reported in CODESYS 2.3 Runtime. The CODESYS 2.3 Runtime is an essential component in several WAGO PLC’s.


CVE-2021-30192: 9.8
CVE-2021-30193: 9.8
CVE-2021-30188: 9.8
CVE-2021-30189: 9.8
CVE-2021-30190: 9.8
CVE-2021-30194: 9.1
CVE-2021-30195: 7.5
CVE-2021-30186: 7.5
CVE-2021-30191: 7.5
CVE-2021-21000: 7.5
CVE-2021-21001: 6.5
CVE-2021-30187: 5.3

Feeds

By Vendor

Archive

2024
2023
2022
2021
2020
2019
2018
2017

Legend

(Scoring for CVSS 2.0,3.0+3.1)
None
No CVE available
Low
0.1 <= 3.9
Medium
4.0 <= 6.9
High
7.0 <= 8.9
Critical
9.0 <= 10.0