Lucene search
K

28 matches found

CNNVD
CNNVD
added 2025/12/09 12:0 a.m.4 views

PHOENIX CONTACT FL SWITCH 跨站脚本漏洞

PHOENIX CONTACT FL SWITCH is an industrial grade Ethernet switch from PHOENIX CONTACT, Germany. A cross-site scripting vulnerability exists in PHOENIX CONTACT FL SWITCH versions prior to 3.50, which can be exploited by an unauthenticated, remote attacker to trick an authenticated user into clicki...

7.1CVSS6AI score0.08549EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.4 views

Phoenix Contact FL SWITCH 跨站脚本漏洞

The PHOENIX CONTACT FL SWITCH is an industrial grade Ethernet switch from PHOENIX CONTACT, Germany. A cross-site scripting vulnerability exists in Phoenix Contact FL SWITCH versions prior to 3.50, which originates from improper input neutralization during web page generation...

7.1CVSS6AI score0.00576EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.6 views

Phoenix Contact FL SWITCH 跨站脚本漏洞

The PHOENIX CONTACT FL SWITCH is an industrial grade Ethernet switch from PHOENIX CONTACT, Germany. A cross-site scripting vulnerability exists in Phoenix Contact FL SWITCH versions prior to 3.50, which originates from a cross-site scripting attack that could result in modification of device...

7.1CVSS6AI score0.08549EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-5925

Malware in sbrugna...

8.8CVSS8.8AI score0.00856EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-5924

Malware in sbrugna...

9.8CVSS9AI score0.0111EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2021-8414

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00678EPSS
Exploits0References1
NVD
NVD
added 2023/06/13 7:15 a.m.21 views

CVE-2023-2673

Improper Input Validation vulnerability in PHOENIX CONTACT FL/TC MGUARD Family in multiple versions may allow UDP packets to bypass the filter rules and access the solely connected device behind the MGUARD which can be used for flooding attacks...

5.3CVSS5.3AI score0.0062EPSS
Exploits0References1
Prion
Prion
added 2023/06/13 7:15 a.m.24 views

Input validation

Improper Input Validation vulnerability in PHOENIX CONTACT FL/TC MGUARD Family in multiple versions may allow UDP packets to bypass the filter rules and access the solely connected device behind the MGUARD which can be used for flooding attacks...

5CVSS5.3AI score0.0062EPSS
Exploits0References1Affected Software26
NVD
NVD
added 2021/11/10 12:15 p.m.23 views

CVE-2021-34598

In Phoenix Contact FL MGUARD 1102 and 1105 in Versions 1.4.0, 1.4.1 and 1.5.0 the remote logging functionality is impaired by the lack of memory release for data structures from syslog-ng when remote logging is active...

7.5CVSS0.00904EPSS
Exploits0References1
NVD
NVD
added 2021/11/10 12:15 p.m.17 views

CVE-2021-34582

In Phoenix Contact FL MGUARD 1102 and 1105 in Versions 1.4.0, 1.4.1 and 1.5.0 a user with high privileges can inject HTML code XSS through web-based management or the REST API with a manipulated certificate file...

4.8CVSS0.00283EPSS
Exploits0References1
Prion
Prion
added 2021/11/10 12:15 p.m.12 views

Design/Logic Flaw

In Phoenix Contact FL MGUARD 1102 and 1105 in Versions 1.4.0, 1.4.1 and 1.5.0 the remote logging functionality is impaired by the lack of memory release for data structures from syslog-ng when remote logging is active...

4.3CVSS7.6AI score0.00904EPSS
Exploits0References1Affected Software2
NVD
NVD
added 2021/06/25 7:15 p.m.14 views

CVE-2021-21002

In Phoenix Contact FL COMSERVER UNI in versions 2.40 a invalid Modbus exception response can lead to a temporary denial of service...

7.5CVSS0.00961EPSS
Exploits0References1
Prion
Prion
added 2019/05/07 6:29 p.m.39 views

Cross site request forgery (csrf)

The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 is prone to CSRF...

6.8CVSS8.9AI score0.00856EPSS
Exploits0References2Affected Software29
NVD
NVD
added 2019/05/07 6:29 p.m.15 views

CVE-2018-13991

The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 leaks private information in firmware images...

5.3CVSS5.6AI score0.0164EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/05/07 5:32 p.m.19 views

CVE-2018-13993

The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 is prone to CSRF...

8.8CVSS8.7AI score0.00856EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/05/07 5:24 p.m.21 views

CVE-2018-13991

The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 leaks private information in firmware images...

5.3CVSS5.2AI score0.0164EPSS
Exploits0References2
Prion
Prion
added 2019/05/06 7:29 p.m.24 views

Design/Logic Flaw

The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions prior to 1.35 is vulnerable to brute-force attacks, because of Improper Restriction of Excessive Authentication Attempts...

5CVSS9.4AI score0.02314EPSS
Exploits0References2Affected Software29
Cvelist
Cvelist
added 2019/05/06 6:47 p.m.17 views

CVE-2018-13990

The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions prior to 1.35 is vulnerable to brute-force attacks, because of Improper Restriction of Excessive Authentication Attempts...

8.6CVSS9.5AI score0.02314EPSS
Exploits0References2
Prion
Prion
added 2019/03/26 8:29 p.m.15 views

Session fixation

An issue was discovered on PHOENIX CONTACT FL NAT SMCS 8TX, FL NAT SMN 8TX, FL NAT SMN 8TX-M, and FL NAT SMN 8TX-M-DMG devices. There is unauthorized access to the WEB-UI by attackers arriving from the same source IP address as an authenticated user, because this IP address is used as a session...

6.8CVSS8.5AI score0.01638EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2018/12/04 12:0 a.m.22 views

PHOENIX CONTACT FL VIEW Detection (Windows SMB Login)

SMB login-based detection of PHOENIX CONTACT FL VIEW. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7AI score
Exploits0
Rows per page
Query Builder