CVE-2025-25269 | Phoenix Contact CHARX SEC-3000 up to 1.7.2 os command injection (VDE-2025-019)

Inserito da Angelo Barbosa | Lug 8, 2025 | CVE

A vulnerability has been found in Phoenix Contact CHARX SEC-3150, CHARX SEC-3100, CHARX SEC-3050 and CHARX SEC-3000 up to 1.7.2 and classified as critical. This vulnerability affects unknown code. The manipulation leads to os command injection.

This vulnerability was named CVE-2025-25269. The attack needs to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-25269 | Phoenix Contact CHARX SEC-3000 up to 1.7.2 os command injection (VDE-2025-019)

Post correlati

CVE-2023-45587 | Fortinet FortiSandbox up to 3.1.5/3.2.4/4.0.4/4.2.6/4.4.2 HTTP Request cross site scripting (FG-IR-23-360)

CVE-2024-25081 | FontForge up to 20230101 Splinefont command injection

CVE-2024-8414 | SourceCodester Insurance Management System 1.0 cross-site request forgery

CVE-2023-6594 | Button Plugin up to 9.7.4 on WordPress cross site scripting