CVE-2025-25269 | Phoenix Contact CHARX SEC-3000 up to 1.7.2 os command injection (VDE-2025-019)

Inserito da Angelo Barbosa | Lug 8, 2025 | CVE

A vulnerability has been found in Phoenix Contact CHARX SEC-3150, CHARX SEC-3100, CHARX SEC-3050 and CHARX SEC-3000 up to 1.7.2 and classified as critical. This vulnerability affects unknown code. The manipulation leads to os command injection.

This vulnerability was named CVE-2025-25269. The attack needs to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-25269 | Phoenix Contact CHARX SEC-3000 up to 1.7.2 os command injection (VDE-2025-019)

Post correlati

CVE-2024-6322 | Grafana/Grafana Enterprise up to 11.1.0/11.1.2 plugin.json ReqActions privileges assignment

CVE-2024-51300 | Draytek Vigor 3900 1.5.1.3 mainfunction.cgi get_rrd command injection

CVE-2025-48742 | SIGB PMB prior 8.0.1.2 Installer missing authentication

CVE-2024-4131 | Lenovo Emulator up to 9.1.5 uncontrolled search path