Wp 6101-wxps Firmware Security Vulnerabilities and Issues — Wp 6101-wxps Firmware CVE List

Lucene search

PhoenixcontactWp 6101-wxps Firmware

5 matches found

CVE•added 2023/08/09 7:15 a.m.•2474 views

CVE-2023-37862

In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 an unauthenticated remote attacker can access upload-functions of the HTTP API. This might cause certificate errors for SSL-connections and might result in a partial denial-of-service.

8.2CVSS8.1AI score0.00277EPSS

CVE•added 2023/08/08 7:15 a.m.•47 views

CVE-2023-3573

In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with low privileges may use a command injection in a HTTP POST request releated to font configuration operations to gain full access to the device.

8.8CVSS9.1AI score0.00669EPSS

CVE•added 2023/08/09 7:15 a.m.•44 views

CVE-2023-37861

In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 an authenticated remote attacker can execute code with root permissions with a specially crafted HTTP POST when uploading a certificate to the device.

8.8CVSS8.7AI score0.01051EPSS

CVE•added 2023/08/08 7:15 a.m.•28 views

CVE-2023-3571

In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with low privileges may use a specific HTTP POST releated to certificate operations to gain full access to the device.

8.8CVSS8.8AI score0.00401EPSS

CVE•added 2023/08/08 7:15 a.m.•25 views

CVE-2023-3570

In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with low privileges may use a specific HTTP DELETE request to gain full access to the device.

8.8CVSS8.8AI score0.00466EPSS