CVE-2022-3461

In PHOENIX CONTACT Automationworx Software Suite up to version 1.89 manipulated PC Worx or Config+ files could lead to a heap buffer overflow and a read access violation. Availability, integrity, or confidentiality of an application programming workstation might be compromised by attacks using...

The vulnerabilities of the components of the Automationworx Software Suite, including PC Worx, PC Worx Express, and Config+, allow attackers to disclose protected information and execute arbitrary code.

The vulnerability of the components of the Automationworx Software Suite, including PC Worx, PC Worx Express, and Config+, lies in the ability to read data beyond the designated memory area. Exploiting this vulnerability allows an attacker to disclose sensitive information and execute arbitrary...

CVE-2019-16675

An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC Worx or Config+ project file could lead to an Out-of-bounds Read and remote code execution. The attacker needs to get access to an original PC Worx or Config+...

The vulnerability of the components of the PC Worx, PC Worx Express, INTERBUS Config+ software suite, related to the access to an uninitialized pointer, allows a perpetrator to execute arbitrary code.

The vulnerability of the PC Worx, PC Worx Express, INTERBUS Config+ software package, and the Automationworx Software Suite components is related to the access to an uninitialized pointer. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the PC Worx, PC Worx Express, INTERBUS Config+ software package, Automationworx Software Suite components, related to the use of memory after it is freed, allows a hacker to execute arbitrary code.

The vulnerability of the PC Worx, PC Worx Express, INTERBUS Config+ software suite components is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

CVE-2019-12869

An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC Worx or Config+ project file could lead to an Out-Of-Bounds Read, Information Disclosure, and remote code execution. The attacker needs to get access to an...

CVE-2019-12871

An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC Worx or Config+ project file could lead to a Use-After-Free and remote code execution. The attacker needs to get access to an original PC Worx or Config+ proje...

Phoenix Contact Automation Worx Software Suite Uninitialized Pointer Access Vulnerability

Automation Worx Software Suite is an automation software package from Phoenix Contact. An uninitialized pointer access vulnerability exists in the PC Worx, PC Worx Express, and Config+ components in Phoenix Contact Automation Worx Software Suite versions 1.86 and earlier. An attacker could exploi...

Phoenix Contact Automation Worx Software Suite Out-of-Bounds Read Vulnerability

Automation Worx Software Suite is an automation software package from Phoenix Contact. An out-of-bounds read vulnerability exists in the PC Worx, PC Worx Express, and Config+ components in Phoenix Contact Automation Worx Software Suite versions 1.86 and earlier. An attacker could exploit this...