16 matches found
EUVD-2021-8414
Malicious code in bioql PyPI...
EUVD-2021-8412
Malicious code in bioql PyPI...
CVE-2021-21005
In Phoenix Contact FL SWITCH SMCS series products in multiple versions if an attacker sends a hand-crafted TCP-Packet with the Urgent-Flag set and the Urgent-Pointer set to 0, the network stack will crash. The device needs to be rebooted afterwards...
CVE-2021-21004
In Phoenix Contact FL SWITCH SMCS series products in multiple versions an attacker may insert malicious code via LLDP frames into the web-based management which could then be executed by the client...
CVE-2021-21005
In Phoenix Contact FL SWITCH SMCS series products in multiple versions if an attacker sends a hand-crafted TCP-Packet with the Urgent-Flag set and the Urgent-Pointer set to 0, the network stack will crash. The device needs to be rebooted afterwards...
CVE-2021-21003
In Phoenix Contact FL SWITCH SMCS series products in multiple versions fragmented TCP-Packets may cause a Denial of Service of Web-, SNMP- and ICMP-Echo services. The switching functionality of the device is not affected...
CVE-2021-21004
In Phoenix Contact FL SWITCH SMCS series products in multiple versions an attacker may insert malicious code via LLDP frames into the web-based management which could then be executed by the client...
Code injection
In Phoenix Contact FL SWITCH SMCS series products in multiple versions an attacker may insert malicious code via LLDP frames into the web-based management which could then be executed by the client...
Code injection
In Phoenix Contact FL SWITCH SMCS series products in multiple versions fragmented TCP-Packets may cause a Denial of Service of Web-, SNMP- and ICMP-Echo services. The switching functionality of the device is not affected...
Design/Logic Flaw
In Phoenix Contact FL SWITCH SMCS series products in multiple versions if an attacker sends a hand-crafted TCP-Packet with the Urgent-Flag set and the Urgent-Pointer set to 0, the network stack will crash. The device needs to be rebooted afterwards...
CVE-2021-21005 Race Condition Vulnerability in Phoenix Contact FL SWITCH SMCS series products
In Phoenix Contact FL SWITCH SMCS series products in multiple versions if an attacker sends a hand-crafted TCP-Packet with the Urgent-Flag set and the Urgent-Pointer set to 0, the network stack will crash. The device needs to be rebooted afterwards...
CVE-2021-21005
CVE-2021-21005 affects Phoenix Contact FL SWITCH SMCS series. A crafted TCP packet with the Urgent-Flag set and Urgent-Pointer at 0 can crash the device’s network stack, requiring a reboot. The provided sources confirm affected product family and the exact trigger, with CVSS indicating HIGH impac...
CVE-2021-21004
CVE-2021-21004 affects Phoenix Contact FL SWITCH SMCS series. An attacker can inject malicious code via LLDP frames into the device’s web-based management, which could be executed by the client. Documented impact includes potential modification or execution of code on the client side, with CVSS d...
CVE-2021-21004 Cross-site Scripting Vulnerability in Phoenix Contact FL SWITCH SMCS series products
In Phoenix Contact FL SWITCH SMCS series products in multiple versions an attacker may insert malicious code via LLDP frames into the web-based management which could then be executed by the client...
CVE-2021-21003 Denial of Service Vulnerability in Phoenix Contact FL SWITCH SMCS series products
In Phoenix Contact FL SWITCH SMCS series products in multiple versions fragmented TCP-Packets may cause a Denial of Service of Web-, SNMP- and ICMP-Echo services. The switching functionality of the device is not affected...
Phoenix Contact FL SWITCH竞争条件问题漏洞
The Phoenix Contact FL SWITCH is an industrial grade Ethernet switch from Phoenix Contact, Germany. A security vulnerability exists in the Phoenix Contact FL SWITCH SMCS, which can be exploited by an attacker to send a manual tcp packet with the emergency flag set and the emergency pointer set to...