First published: Tue Aug 03 2021(Updated: )
Multiple Phoenix Contact PLCnext control devices in versions prior to 2021.0.5 LTS are prone to a DoS attack through special crafted JSON requests.
Credit: info@cert.vde.com
Affected Software | Affected Version | How to fix |
---|---|---|
Phoenixcontact Plcnext Technology Starterkit Firmware | <2021.0.5 | |
Phoenixcontact Plcnext Technology Starterkit | ||
Phoenixcontact Axc F 2152 Starterkit Firmware | <2021.0.5 | |
Phoenixcontact Axc F 2152 Starterkit | ||
Phoenixcontact Rfc 4072s Firmware | <2021.0.5 | |
Phoenixcontact Rfc 4072s | ||
Phoenixcontact Axc F 3152 Firmware | <2021.0.5 | |
Phoenixcontact Axc F 3152 | ||
Phoenixcontact Axc F 1152 Firmware | <2021.0.5 | |
Phoenixcontact Axc F 1152 | ||
Phoenixcontact Axc F 2152 Firmware | <2021.0.5 | |
Phoenixcontact Axc F 2152 |
Phoenix Contact recommends affected users to upgrade to the current Firmware 2021.0.5 LTS or higher which fixes this vulnerability.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-34570 is a vulnerability that affects multiple Phoenix Contact PLCnext control devices in versions prior to 2021.0.5 LTS.
CVE-2021-34570 has a severity rating of 7.5 (High).
Phoenix Contact PLCnext control devices in versions prior to 2021.0.5 LTS are affected by CVE-2021-34570.
CVE-2021-34570 can be exploited through specially crafted JSON requests.
Updating the affected Phoenix Contact PLCnext control devices to version 2021.0.5 LTS will fix CVE-2021-34570.