CVE-2022-31800: Insufficient Verification of Data Vulnerability in PHOENIX CONTACT classic line industrial controllers
First published: Mon Jun 20 2022(Updated: )
An unauthenticated, remote attacker could upload malicious logic to devices based on ProConOS/ProConOS eCLR in order to gain full control over the device.
Credit: info@cert.vde.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Phoenix Contact Axc 1050 Firmware | ||
| Phoenix Contact Axc 1050 Firmware | ||
| Phoenix Contact Axc 1050 XC Firmware | ||
| Phoenix Contact Axc 1050 XC Firmware | ||
| Phoenix Contact AXC 3050 | ||
| Phoenix Contact AXC 3050 | ||
| Phoenix Contact FC 350 PCI ETH Firmware | ||
| Phoenix Contact FC 350 PCI ETH Firmware | ||
| Phoenix Contact ILC 1x0 Firmware | ||
| Phoenix Contact ILC 1x0 Firmware | ||
| Phoenix Contact ILC 1x1 GSM/GPRS Firmware | ||
| Phoenix Contact ILC 1x1 GSM/GPRS Firmware | ||
| Phoenix Contact ILC 1x1 GSM/GPRS Firmware | ||
| phoenixcontact ilc 1x1 gsm\/gprs | ||
| Phoenix Contact ILC 3xx | ||
| Phoenix Contact ILC 3xx | ||
| Phoenix Contact PC Worx RT Basic | ||
| Phoenix Contact PC Worx RT Basic | ||
| Phoenix Contact PC Worx SRT | ||
| Phoenix Contact PC Worx SRT | ||
| phoenixcontact rfc 430 eth-ib firmware | ||
| Phoenix Contact RFC 430 ETH-IB | ||
| phoenixcontact rfc 450 eth-ib firmware | ||
| PhoenixContact RFC 450 ETH-IB | ||
| Phoenix Contact RFC 460R PN 3TX | ||
| Phoenix Contact RFC 460R PN 3TX | ||
| Phoenix Contact RFC 460R PN 3TX-S | ||
| Phoenix Contact RFC 460R PN 3TX-S | ||
| Phoenix Contact RFC 470 PN 3TX | ||
| Phoenix Contact RFC 470 PN 3TX | ||
| Phoenix Contact RFC 470S PN 3TX | ||
| phoenixcontact rfc 470s pn 3tx firmware | ||
| Phoenix Contact RFC 480S PN 4TX Firmware | ||
| Phoenix Contact RFC 480S PN 4TX Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-31800?
CVE-2022-31800 is a vulnerability that allows an unauthenticated remote attacker to upload malicious logic to devices based on ProConOS/ProConOS eCLR in order to gain full control over the device.
What is the severity of CVE-2022-31800?
CVE-2022-31800 has a severity rating of 9.8, which is categorized as critical.
How does CVE-2022-31800 affect Phoenixcontact Axc 1050 Firmware?
Phoenixcontact Axc 1050 Firmware is affected by CVE-2022-31800.
Is Phoenixcontact Axc 1050 Xc affected by CVE-2022-31800?
No, Phoenixcontact Axc 1050 Xc is not affected by CVE-2022-31800.
How can I fix CVE-2022-31800?
There is currently no fix available for CVE-2022-31800. It is recommended to follow the guidance provided by the vendor or security experts.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/references
- agent/weakness
- agent/title
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/phoenixcontact
- canonical/phoenix contact axc 1050 firmware
- canonical/phoenix contact axc 1050 xc firmware
- canonical/phoenix contact axc 3050
- canonical/phoenix contact fc 350 pci eth firmware
- canonical/phoenix contact ilc 1x0 firmware
- canonical/phoenix contact ilc 1x1 gsm/gprs firmware
- canonical/phoenixcontact ilc 1x1 gsm\/gprs
- canonical/phoenix contact ilc 3xx
- canonical/phoenix contact pc worx rt basic
- canonical/phoenix contact pc worx srt
- canonical/phoenixcontact rfc 430 eth-ib firmware
- canonical/phoenix contact rfc 430 eth-ib
- canonical/phoenixcontact rfc 450 eth-ib firmware
- canonical/phoenixcontact rfc 450 eth-ib
- canonical/phoenix contact rfc 460r pn 3tx
- canonical/phoenix contact rfc 460r pn 3tx-s
- canonical/phoenix contact rfc 470 pn 3tx
- canonical/phoenix contact rfc 470s pn 3tx
- canonical/phoenixcontact rfc 470s pn 3tx firmware
- canonical/phoenix contact rfc 480s pn 4tx firmware