Vulnerabilities (CVE)

Filtered by vendor Phoenixcontact Subscribe

Filtered by product Multiprog

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-0757	1 Phoenixcontact	2 Multiprog, Proconos Eclr	2023-12-21	N/A	9.8 CRITICAL
Incorrect Permission Assignment for Critical Resource vulnerability in PHOENIX CONTACT MULTIPROG, PHOENIX CONTACT ProConOS eCLR (SDK) allows an unauthenticated remote attacker to upload arbitrary malicious code and gain full access on the affected device.
CVE-2022-31801	2 Phoenixcontact, Phoenixcontact-software	3 Multiprog, Proconos, Proconos Eclr	2022-06-28	10.0 HIGH	9.8 CRITICAL
An unauthenticated, remote attacker could upload malicious logic to the devices based on ProConOS/ProConOS eCLR in order to gain full control over the device.