CVE-2023-46141: Phoenix Contact: Automation Worx and classic line controllers prone to Incorrect Permission Assignment for Critical Resource
First published: Thu Dec 14 2023(Updated: )
Incorrect Permission Assignment for Critical Resource vulnerability in multiple products of the PHOENIX CONTACT classic line allow an remote unauthenticated attacker to gain full access of the affected device.
Credit: info@cert.vde.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Phoenix Contact Automationworx | ||
| All of | ||
| Phoenixcontact Axc 1050 Firmware | ||
| Phoenixcontact Axc 1050 | ||
| All of | ||
| Phoenixcontact Axc 1050 Xc Firmware | ||
| Phoenixcontact Axc 1050 Xc | ||
| All of | ||
| Phoenixcontact Axc 3050 Firmware | ||
| Phoenixcontact Axc 3050 | ||
| Phoenixcontact Config\+ | ||
| All of | ||
| Phoenixcontact Fc 350 Pci Eth Firmware | ||
| Phoenixcontact Fc 350 Pci Eth | ||
| All of | ||
| Phoenixcontact Ilc1x0 Firmware | ||
| Phoenixcontact Ilc1x0 | ||
| All of | ||
| Phoenixcontact Ilc1x1 Firmware | ||
| Phoenixcontact Ilc1x1 | ||
| All of | ||
| Phoenixcontact Ilc 3xx Firmware | ||
| Phoenixcontact Ilc 3xx | ||
| Phoenix Contact Automationworx | ||
| Phoenix Contact Automationworx | ||
| All of | ||
| Phoenixcontact Pc Worx Rt Basic Firmware | ||
| Phoenixcontact Pc Worx Rt Basic | ||
| Phoenixcontact Pc Worx Srt | ||
| All of | ||
| Phoenixcontact Rfc 430 Eth-ib Firmware | ||
| Phoenixcontact Rfc 430 Eth-ib | ||
| All of | ||
| Phoenixcontact Rfc 450 Eth-ib Firmware | ||
| Phoenixcontact Rfc 450 Eth-ib | ||
| All of | ||
| Phoenixcontact Rfc 460r Pn 3tx Firmware | ||
| Phoenixcontact Rfc 460r Pn 3tx | ||
| All of | ||
| Phoenixcontact Rfc 470s Pn 3tx Firmware | ||
| Phoenixcontact Rfc 470s Pn 3tx | ||
| All of | ||
| Phoenixcontact Rfc 480s Pn 4tx Firmware | ||
| Phoenixcontact Rfc 480s Pn 4tx |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-api
- agent/title
- agent/weakness
- agent/tags
- agent/event
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/phoenixcontact
- canonical/phoenix contact automationworx
- canonical/phoenixcontact axc 1050 firmware
- canonical/phoenixcontact axc 1050
- canonical/phoenixcontact axc 1050 xc firmware
- canonical/phoenixcontact axc 1050 xc
- canonical/phoenixcontact axc 3050 firmware
- canonical/phoenixcontact axc 3050
- canonical/phoenixcontact config\+
- canonical/phoenixcontact fc 350 pci eth firmware
- canonical/phoenixcontact fc 350 pci eth
- canonical/phoenixcontact ilc1x0 firmware
- canonical/phoenixcontact ilc1x0
- canonical/phoenixcontact ilc1x1 firmware
- canonical/phoenixcontact ilc1x1
- canonical/phoenixcontact ilc 3xx firmware
- canonical/phoenixcontact ilc 3xx
- canonical/phoenixcontact pc worx rt basic firmware
- canonical/phoenixcontact pc worx rt basic
- canonical/phoenixcontact pc worx srt
- canonical/phoenixcontact rfc 430 eth-ib firmware
- canonical/phoenixcontact rfc 430 eth-ib
- canonical/phoenixcontact rfc 450 eth-ib firmware
- canonical/phoenixcontact rfc 450 eth-ib
- canonical/phoenixcontact rfc 460r pn 3tx firmware
- canonical/phoenixcontact rfc 460r pn 3tx
- canonical/phoenixcontact rfc 470s pn 3tx firmware
- canonical/phoenixcontact rfc 470s pn 3tx
- canonical/phoenixcontact rfc 480s pn 4tx firmware
- canonical/phoenixcontact rfc 480s pn 4tx