Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2023/04/26 12:0 a.m.24 views

Phoenix Contact ENERGY AXC PU Path Traversal (CVE-2023-1109)

In Phoenix Contacts ENERGY AXC PU Web service an authenticated restricted user of the web frontend can access, read, write and create files throughout the file system using specially crafted URLs via the upload and download functionality of the web service. This may lead to full control of the...

8.8CVSS7.9AI score0.00759EPSS
Exploits0References3
OSV
OSV
added 2023/04/17 8:15 a.m.5 views

CVE-2023-1109

In Phoenix Contacts ENERGY AXC PU Web service an authenticated restricted user of the web frontend can access, read, write and create files throughout the file system using specially crafted URLs via the upload and download functionality of the web service. This may lead to full control of the...

8.8CVSS7.3AI score0.00759EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/04/17 7:32 a.m.7 views

CVE-2023-1109 PHOENIX CONTACT: Directory Traversal Vulnerability in ENERGY AXC PU Web service

In Phoenix Contacts ENERGY AXC PU Web service an authenticated restricted user of the web frontend can access, read, write and create files throughout the file system using specially crafted URLs via the upload and download functionality of the web service. This may lead to full control of the...

8.8CVSS8.7AI score0.00759EPSS
Exploits0References1
CVE
CVE
added 2023/04/17 7:32 a.m.44 views

CVE-2023-1109

Phoenix Contact ENERGY AXC PU Web Service is affected by a path traversal vulnerability (CVE-2023-1109). An authenticated restricted user can craft URLs through the upload/download functionality to access, read, write, and create files across the file system, potentially gaining full control of t...

8.8CVSS8.8AI score0.00759EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder