Charx Sec-3100 Firmware Security Vulnerabilities and Issues — Charx Sec-3100 Firmware CVE List

Lucene search

PhoenixcontactCharx Sec-3100 Firmware

5 matches found

CVE•added 2024/03/12 9:15 a.m.•70 views

CVE-2024-25995

An unauthenticated remote attacker can modify configurations to perform a remote code execution, gain root rights or perform an DoS due to improper input validation.

9.8CVSS9.9AI score0.01758EPSS

CVE•added 2024/03/12 9:15 a.m.•63 views

CVE-2024-26001

An unauthenticated remote attacker can write memory out of bounds due to improper input validation in the MQTT stack. The brute force attack is not always successful because of memory randomization.

9.8CVSS7.7AI score0.00602EPSS

CVE•added 2024/08/13 2:15 p.m.•43 views

CVE-2024-6788

A remote unauthenticated attacker can use the firmware update feature on the LAN interface of the device to reset the password for the predefined, low-privileged user “user-app” to the default password.

9.8CVSS8.8AI score0.01418EPSS

CVE•added 2024/03/12 9:15 a.m.•42 views

CVE-2024-25996

An unauthenticated remote attacker can perform a remote code execution due to an origin validation error. The access is limited to the service user.

9.8CVSS5.9AI score0.01018EPSS

CVE•added 2025/07/08 7:15 a.m.•8 views

CVE-2025-25270

An unauthenticated remote attacker can alter the device configuration in a way to get remote code execution as root with specific configurations.

9.8CVSS7.5AI score0.00233EPSS