critical
9
CWE
269
Advisory Published
Updated

CVE-2022-22509: PHOENIX CONTACT: FL SWITCH 2xxx series incorrect privilege assignment

First published: Wed Feb 02 2022(Updated: )

In Phoenix Contact FL SWITCH Series 2xxx in version 3.00 an incorrect privilege assignment allows an low privileged user to enable full access to the device configuration.

Credit: info@cert.vde.com

Affected SoftwareAffected VersionHow to fix
PhoenixContact FL Switch Firmware=3.00
Phoenixcontact Fl Switch 2005 Firmware
Phoenixcontact Fl Switch 2008 Firmware=3.00
Phoenix Contact FL Switch 2008
Phoenixcontact Fl Switch 2008f=3.00
Phoenix Contact FL Switch
Phoenixcontact Fl Switch 2016 Firmware=3.00
Phoenix Contact FL Switch 2016
Phoenix Contact FL Switch 2105 Firmware=3.00
Phoenixcontact Fl Switch 2105 Firmware
Phoenixcontact Fl Switch 2108 Firmware=3.00
Phoenixcontact Fl Switch 2108 Firmware
Phoenixcontact FL Switch 2116 Firmware=3.00
Phoenixcontact FL Switch 2116 Firmware
Phoenixcontact Fl Switch 2204-2tc-2sfx=3.00
Phoenixcontact Fl Switch 2204-2tc-2sfx Firmware
Phoenixcontact FL Switch 2206c-2fx Firmware=3.00
Phoenix Contact FL Switch 2206-2fx SM
Phoenixcontact Fl Switch 2206-2fx Sm Firmware=3.00
Phoenix Contact FL Switch 2206-2fx SM
Phoenixcontact FL Switch 2206-2fx Sm St=3.00
Phoenixcontact Fl Switch 2206-2fx Sm Firmware
Phoenixcontact Fl Switch 2206-2fx Sm Firmware=3.00
Phoenixcontact Fl Switch 2206-2fx
Phoenixcontact FL Switch 2206-2sfx Firmware=3.00
Phoenixcontact Fl Switch 2206-2sfx Firmware
Phoenixcontact Fl Switch 2206-2sfx Firmware=3.00
Phoenixcontact FL Switch 2206-2sfx Firmware
Phoenixcontact Fl Switch 2206c-2fx=3.00
Phoenixcontact FL Switch 2206c-2fx Firmware
Phoenixcontact Fl Switch 2207-fx Sm Firmware=3.00
Phoenix Contact FL Switch 2207-FX SM
Phoenixcontact Fl Switch 2207-fx Sm Firmware=3.00
Phoenix Contact FL Switch 2207-FX SM
Phoenix Contact FL Switch 2208 Firmware=3.00
Phoenixcontact Fl Switch 2208 Pn
Phoenix Contact FL Switch 2208 Firmware=3.00
Phoenix Contact FL Switch 2208 Firmware
Phoenix Contact FL Switch 2208 Firmware=3.00
Phoenix Contact FL NAT 2208 Firmware
Phoenixcontact Fl Switch 2212-2tc-2sfx Firmware=3.00
Phoenixcontact Fl Switch 2212-2tc-2sfx Firmware
Phoenixcontact Fl Switch 2214-2fx=3.00
Phoenixcontact Fl Switch 2214-2fx Sm
Phoenixcontact Fl Switch 2214-2fx Firmware=3.00
Phoenixcontact Fl Switch 2214-2fx
Phoenixcontact FL Switch 2214-2sfx Firmware=3.00
Phoenix Contact FL Switch 2214-2SFX
Phoenixcontact Fl Switch 2214-2sfx Firmware=3.00
Phoenixcontact Fl Switch 2214-2sfx
Phoenixcontact Fl Switch 2216 Pn Firmware=3.00
Phoenixcontact Fl Switch 2216 Pn Firmware
Phoenixcontact FL Switch 2216 Pn Firmware=3.00
Phoenixcontact FL Switch 2216 Pn Firmware
Phoenixcontact Fl Switch 2304-2gc-2sfp Firmware=3.00
Phoenixcontact Fl Switch 2304-2gc-2sfp Firmware
Phoenix Contact FL Switch 2306-2SFP PN Firmware=3.00
Phoenixcontact Fl Switch 2306-2sfp Firmware
Phoenix Contact Fl Switch 2306-2SFP Pn Firmware=3.00
Phoenixcontact Fl Switch 2306-2sfp Firmware
Phoenixcontact Fl Switch 2308 Firmware=3.00
Phoenixcontact Fl Switch 2308 Firmware
Phoenixcontact Fl Switch 2308 Firmware=3.00
Phoenixcontact Fl Switch 2308 Firmware
Phoenix Contact FL Switch 2312-2GC-2SFP Firmware=3.00
Phoenix Contact FL Switch 2312-2GC-2SFP Firmware
Phoenix Contact FL Switch 2314-2SFP Pn Firmware=3.00
Phoenixcontact Fl Switch 2314-2sfp Pn
Phoenix Contact FL Switch 2314-2SFP Pn Firmware=3.00
Phoenixcontact FL Switch 2314-2SFP PN
Phoenix Contact FL Switch 2316 Firmware=3.00
Phoenixcontact FL Switch 2316/k1
Phoenixcontact Fl Switch 2316/k1 Firmware=3.00
Phoenixcontact FL Switch 2316/k1
Phoenixcontact Fl Switch 2316/k1 Firmware=3.00
Phoenixcontact Fl Switch 2316 Pn Firmware
Phoenix Contact FL Switch 2404-2TC-2SFX Firmware=3.00
Phoenix Contact FL Switch 2404-2TC-2SFX
Phoenixcontact FL Switch 2406-2sfx Pn Firmware=3.00
Phoenixcontact Fl Switch 2406-2sfx Pn Firmware
Phoenixcontact FL Switch 2406-2sfx Pn Firmware=3.00
Phoenixcontact Fl Switch 2406-2sfx Pn Firmware
Phoenixcontact Fl Switch 2408 Pn Firmware=3.00
Phoenixcontact Fl Switch 2408 Pn Firmware
Phoenix Contact FL Switch 2408 PN Firmware=3.00
Phoenixcontact Fl Switch 2408 Pn Firmware
Phoenixcontact Fl Switch 2412-2tc-2sfx=3.00
Phoenixcontact FL Switch 2412-2tc-2sfx
Phoenixcontact Fl Switch 2414-2sfx Pn Firmware=3.00
Phoenixcontact Fl Switch 2414-2sfx Pn Firmware
Phoenixcontact Fl Switch 2414-2sfx Firmware=3.00
Phoenixcontact Fl Switch 2414-2sfx Pn Firmware
Phoenix Contact FL Switch 2416 Firmware=3.00
Phoenixcontact Fl Switch 2416 Pn Firmware
Phoenix Contact FL Switch 2416 Firmware=3.00
Phoenixcontact Fl Switch 2416 Pn Firmware
Phoenixcontact FL Switch 2504-2GC-2SFP Firmware=3.00
Phoenix Contact FL Switch 2504-2GC-2SFP
Phoenixcontact Fl Switch 2506-2sfp Firmware=3.00
Phoenixcontact Fl Switch 2506-2sfp/k1
Phoenixcontact Fl Switch 2506-2sfp/k1 Firmware=3.00
Phoenixcontact Fl Switch 2506-2sfp/k1
Phoenixcontact Fl Switch 2506-2sfp Firmware=3.00
Phoenixcontact Fl Switch 2506-2sfp Firmware
Phoenixcontact Fl Switch 2508/k1 Firmware=3.00
Phoenixcontact Fl Switch 2508 Firmware
Phoenixcontact Fl Switch 2508/k1 Firmware=3.00
Phoenixcontact Fl Switch 2508/k1
Phoenixcontact Fl Switch 2508 Pn Firmware=3.00
Phoenixcontact Fl Switch 2508 Pn Firmware
Phoenixcontact Fl Switch 2512-2gc-2sfp=3.00
Phoenixcontact Fl Switch 2512-2gc-2sfp Firmware
Phoenixcontact FL Switch 2514-2SFP=3.00
Phoenixcontact FL Switch 2514-2SFP Firmware
Phoenixcontact FL Switch 2514-2SFP=3.00
Phoenixcontact FL Switch 2514-2SFP
Phoenixcontact Fl Switch 2516 Pn Firmware=3.00
Phoenixcontact Fl Switch 2516 Pn Firmware
Phoenixcontact Fl Switch 2516 Pn Firmware=3.00
Phoenixcontact Fl Switch 2516 Pn Firmware
Phoenix Contact FL Switch 2608 PN Firmware=3.00
Phoenixcontact Fl Switch 2608 Pn Firmware
Phoenix Contact FL Switch 2608 PN Firmware=3.00
Phoenixcontact Fl Switch 2608 Pn Firmware
Phoenixcontact Fl Switch 2708 Pn Firmware=3.00
Phoenixcontact Fl Switch 2708 Pn Firmware
Phoenixcontact Fl Switch 2708 Pn=3.00
Phoenixcontact Fl Switch 2708 Pn Firmware
Phoenixcontact FL Switch 2205 Firmware=3.00
Phoenixcontact Fl Switch 2205 Firmware

Remedy

Upgrade to firmware 3.10 or higher

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2022-22509?

    CVE-2022-22509 has been classified with a high-severity rating due to the potential to allow unauthorized users full access to device configurations.

  • How do I fix CVE-2022-22509?

    To remediate CVE-2022-22509, update the affected Phoenix Contact FL SWITCH firmware to a version newer than 3.00 that resolves this privilege assignment issue.

  • Which devices are affected by CVE-2022-22509?

    CVE-2022-22509 affects several firmware versions of Phoenix Contact FL SWITCH models, specifically those running version 3.00.

  • What type of vulnerability is CVE-2022-22509?

    CVE-2022-22509 is a privilege escalation vulnerability that allows low-privileged users to gain unauthorized full access.

  • Is CVE-2022-22509 being actively exploited?

    As of the latest information available, there are no confirmed reports of active exploitation of CVE-2022-22509.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203