CVEs (4)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Phoenixcontact 9Axc F 1152 Firmware Axc F 2152 FirmwareAxc F 3152 Firmware+6 moreNov 21, 2024 Dec 14, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A download of code without integrity check vulnerability in PLCnext products allows an remote attacker with low privileges to compromise integrity on the affected engineering station and the connected devices. |
1Phoenixcontact 9Axc F 1152 Firmware Axc F 2152 FirmwareAxc F 3152 Firmware+6 moreNov 21, 2024 Dec 14, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A incorrect permission assignment for critical resource vulnerability in PLCnext products allows an remote attacker with low privileges to gain full access on the affected devices. |
3Phoenixcontact TrumpfWibu24Activation Wizard Codemeter RuntimeE Mobility Charging Suite+21 moreNov 21, 2024 Sep 13, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A heap buffer overflow vulnerability in Wibu CodeMeter Runtime network service up to version 7.60b allows an unauthenticated, remote attacker to achieve RCE and gain full access of the host system. |
1Phoenixcontact 1Plcnext Engineer Nov 21, 2024 Jul 21, 2020 N/A· v4 7.3 HIGH· v3 4.4 MEDIUM· v2 In PHOENIX CONTACT PLCnext Engineer version 2020.3.1 and earlier an improper path sanitation vulnerability exists on import of project files. |