EUVD-2022-53190

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Unauthenticated attackers can upload malicious code to ProConOS devices to gain full control.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2022-31801	21 Jun 202207:00	–	attackerkb
Circl	CVE-2022-31801	21 Jun 202212:27	–	circl
CNNVD	多款Phoenix Contact产品数据伪造问题漏洞	21 Jun 202200:00	–	cnnvd
CVE	CVE-2022-31801	21 Jun 202208:00	–	cve
Cvelist	CVE-2022-31801 Insufficient Verification of Data Vulnerability in ProConOS/ProConOS eCLR SDK and MULTIPROG Engineering tool	21 Jun 202208:00	–	cvelist
ICS	Phoenix Contact ProConOS and MULTIPROG	21 Jun 202200:00	–	ics
NVD	CVE-2022-31801	21 Jun 202208:15	–	nvd
Prion	Design/Logic Flaw	21 Jun 202208:15	–	prion
Vulnrichment	CVE-2022-31801 Insufficient Verification of Data Vulnerability in ProConOS/ProConOS eCLR SDK and MULTIPROG Engineering tool	21 Jun 202208:00	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "79374377-80aa-3273-8827-99d5d5c7e536",
        "vendor": {
          "name": "PHOENIX CONTACT"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "07c3ad0f-f901-35f2-942f-3bc36c69d4e6",
        "product": {
          "name": "ProConOS"
        },
        "product_version": "All Versions"
      },
      {
        "id": "37ae355e-58cf-3680-9aa4-f8ba717613a7",
        "product": {
          "name": "MULTIPROG"
        },
        "product_version": "All Versions"
      },
      {
        "id": "c6d3c5a5-8d4b-3f9c-9030-f70adcdbc1ed",
        "product": {
          "name": "ProConOS eCLR"
        },
        "product_version": "All Versions"
      }
    ]
  }
]

Source	Link
cert	www.cert.vde.com/en/advisories/VDE-2022-026/

03 Oct 2025 20:07Current

9.2High risk

Vulners AI Score9.2

CVSS 3.19.8

CVSS 210

EPSS0.0068