CVE-2024-25995 | Phoenix Contact CHARX SEC-3150 up to 1.5.0 Configuration missing authentication (VDE-2024-011)

Inserito da Angelo Barbosa | Mar 12, 2024 | CVE

A vulnerability, which was classified as critical, was found in Phoenix Contact CHARX SEC-3000, CHARX SEC-3050, CHARX SEC-3100 and CHARX SEC-3150 up to 1.5.0. Affected is an unknown function of the component Configuration Handler. The manipulation leads to missing authentication.

This vulnerability is traded as CVE-2024-25995. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-25995 | Phoenix Contact CHARX SEC-3150 up to 1.5.0 Configuration missing authentication (VDE-2024-011)

Post correlati

CVE-2024-40895 | FFRI AMC up to 3.5.3 cross site scripting

CVE-2024-40634 | argoproj argo-cd up to 2.9.19/2.10.14/2.11.5 /api/webhook resource consumption (GHSA-jmvp-698c-4x3w)

CVE-2024-4683 | Campcodes Complete Web-Based School Management System 1.0 exam_timetable_insert_form.php exam cross site scripting

CVE-2024-39828 | R74n Sandboxels up to 1.9.5 access control