CVE-2022-3461

In PHOENIX CONTACT Automationworx Software Suite up to version 1.89 manipulated PC Worx or Config+ files could lead to a heap buffer overflow and a read access violation. Availability, integrity, or confidentiality of an application programming workstation might be compromised by attacks using...

CVE-2019-16675

An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC Worx or Config+ project file could lead to an Out-of-bounds Read and remote code execution. The attacker needs to get access to an original PC Worx or Config+...

CVE-2019-12869

An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC Worx or Config+ project file could lead to an Out-Of-Bounds Read, Information Disclosure, and remote code execution. The attacker needs to get access to an...

CVE-2019-12871

An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC Worx or Config+ project file could lead to a Use-After-Free and remote code execution. The attacker needs to get access to an original PC Worx or Config+ proje...

Phoenix Contact Automation Worx Software Suite Uninitialized Pointer Access Vulnerability

Automation Worx Software Suite is an automation software package from Phoenix Contact. An uninitialized pointer access vulnerability exists in the PC Worx, PC Worx Express, and Config+ components in Phoenix Contact Automation Worx Software Suite versions 1.86 and earlier. An attacker could exploi...

Phoenix Contact Automation Worx Software Suite Out-of-Bounds Read Vulnerability

Automation Worx Software Suite is an automation software package from Phoenix Contact. An out-of-bounds read vulnerability exists in the PC Worx, PC Worx Express, and Config+ components in Phoenix Contact Automation Worx Software Suite versions 1.86 and earlier. An attacker could exploit this...