CVE-2020-9435
First published: Thu Mar 12 2020(Updated: )
PHOENIX CONTACT TC ROUTER 3002T-4G through 2.05.3, TC ROUTER 2002T-3G through 2.05.3, TC ROUTER 3002T-4G VZW through 2.05.3, TC ROUTER 3002T-4G ATT through 2.05.3, TC CLOUD CLIENT 1002-4G through 2.03.17, and TC CLOUD CLIENT 1002-TXTX through 1.03.17 devices contain a hardcoded certificate (and key) that is used by default for web-based services on the device. Impersonation, man-in-the-middle, or passive decryption attacks are possible if the generic certificate is not replaced by a device-specific certificate during installation.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Phoenixcontact Tc Router 3002t-4g Firmware | <=2.05.3 | |
| Phoenixcontact Tc Router 3002t-4g | ||
| Phoenixcontact Tc Router 2002t-3g Firmware | <=2.05.3 | |
| Phoenixcontact Tc Router 2002t-3g | ||
| Phoenixcontact Tc Router 3002t-4g Vzw Firmware | <=2.05.3 | |
| Phoenixcontact Tc Router 3002t-4g Vzw | ||
| Phoenixcontact Tc Router 3002t-4g Att Firmware | <=2.05.3 | |
| Phoenixcontact Tc Router 3002t-4g Att | ||
| Phoenixcontact Tc Cloud Client 1002-4g Firmware | <=2.03.17 | |
| Phoenixcontact Tc Cloud Client 1002-4g | ||
| Phoenixcontact Tc Cloud Client 1002-txtx Firmware | <=1.03.17 | |
| Phoenixcontact Tc Cloud Client 1002-txtx |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-9435?
The severity of CVE-2020-9435 is high with a score of 7.5.
What are the affected devices of CVE-2020-9435?
The affected devices of CVE-2020-9435 are PHOENIX CONTACT TC ROUTER 3002T-4G through 2.05.3, TC ROUTER 2002T-3G through 2.05.3, TC ROUTER 3002T-4G VZW through 2.05.3, TC ROUTER 3002T-4G ATT through 2.05.3, TC CLOUD CLIENT 1002-4G through 2.03.17, and TC CLOUD CLIENT 1002-TXTX through 1.03.17.
What is the vulnerability type of CVE-2020-9435?
The vulnerability type of CVE-2020-9435 is a hardcoded certificate and key.
How do I fix the vulnerability in PHOENIX CONTACT TC ROUTER 3002T-4G?
To fix the vulnerability in PHOENIX CONTACT TC ROUTER 3002T-4G, update the firmware to version 2.05.3 or higher.
Where can I find more information about CVE-2020-9435?
You can find more information about CVE-2020-9435 at the following references: [Reference 1](http://packetstormsecurity.com/files/156729/Phoenix-Contact-TC-Router-TC-Cloud-Client-Command-Injection.html), [Reference 2](http://seclists.org/fulldisclosure/2020/Mar/15), [Reference 3](https://cert.vde.com/en-us/advisories/).
- collector/nvd-index
- agent/weakness
- agent/references
- agent/author
- agent/severity
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/tags
- agent/first-publish-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/phoenixcontact
- canonical/phoenixcontact tc router 3002t-4g firmware
- version/phoenixcontact tc router 3002t-4g firmware/2.05.3
- canonical/phoenixcontact tc router 3002t-4g
- canonical/phoenixcontact tc router 2002t-3g firmware
- version/phoenixcontact tc router 2002t-3g firmware/2.05.3
- canonical/phoenixcontact tc router 2002t-3g
- canonical/phoenixcontact tc router 3002t-4g vzw firmware
- version/phoenixcontact tc router 3002t-4g vzw firmware/2.05.3
- canonical/phoenixcontact tc router 3002t-4g vzw
- canonical/phoenixcontact tc router 3002t-4g att firmware
- version/phoenixcontact tc router 3002t-4g att firmware/2.05.3
- canonical/phoenixcontact tc router 3002t-4g att
- canonical/phoenixcontact tc cloud client 1002-4g firmware
- version/phoenixcontact tc cloud client 1002-4g firmware/2.03.17
- canonical/phoenixcontact tc cloud client 1002-4g
- canonical/phoenixcontact tc cloud client 1002-txtx firmware
- version/phoenixcontact tc cloud client 1002-txtx firmware/1.03.17
- canonical/phoenixcontact tc cloud client 1002-txtx