Multiprog

multiprog

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-5592 1Phoenixcontact 2Multiprog Proconos Eclr Nov 21, 2024 Dec 14, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Download of Code Without Integrity Check vulnerability in PHOENIX CONTACT MULTIPROG, PHOENIX CONTACT ProConOS eCLR (SDK) allows an unauthenticated remote attacker to download and execute applications without integrity ch...Show more Download of Code Without Integrity Check vulnerability in PHOENIX CONTACT MULTIPROG, PHOENIX CONTACT ProConOS eCLR (SDK) allows an unauthenticated remote attacker to download and execute applications without integrity checks on the device which may result in a complete loss of integrity.Show less
CVE-2023-0757 1Phoenixcontact 2Multiprog Proconos Eclr Nov 21, 2024 Dec 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Incorrect Permission Assignment for Critical Resource vulnerability in PHOENIX CONTACT MULTIPROG, PHOENIX CONTACT ProConOS eCLR (SDK) allows an unauthenticated remote attacker to upload arbitrary malicious code and gain...Show more Incorrect Permission Assignment for Critical Resource vulnerability in PHOENIX CONTACT MULTIPROG, PHOENIX CONTACT ProConOS eCLR (SDK) allows an unauthenticated remote attacker to upload arbitrary malicious code and gain full access on the affected device.Show less
CVE-2022-31801 2Phoenixcontact Phoenixcontact Software 3Multiprog ProconosProconos Eclr Nov 21, 2024 Jun 21, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 An unauthenticated, remote attacker could upload malicious logic to the devices based on ProConOS/ProConOS eCLR in order to gain full control over the device.