浏览 31+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-41699 | Phoenix Contact: Security Advisory for CHARX SEC-3xxx charging controllers | Phoenix Contact | CHARX SEC-3150 | High | 8.8 | 2025-10-14 08:35:05 | Deep Dive |
| CVE-2025-25271 | OCPP Backend Configuration via Insecure Defaults | Phoenix Contact | CHARX SEC-3150 | High | 8.8 | 2025-07-08 07:01:33 | Deep Dive |
| CVE-2025-25270 | Remote Code Execution via Unauthenticated Configuration Manipulation | Phoenix Contact | CHARX SEC-3150 | Critical | 9.8 | 2025-07-08 07:00:58 | Deep Dive |
| CVE-2025-25269 | Local Privilege Escalation via Unauthenticated Command Injection | Phoenix Contact | CHARX SEC-3150 | High | 8.4 | 2025-07-08 07:00:43 | Deep Dive |
| CVE-2025-25268 | Unauthenticated Configuration Access via Exposed API Endpoint | Phoenix Contact | CHARX SEC-3150 | High | 8.8 | 2025-07-08 07:00:27 | Deep Dive |
| CVE-2025-24006 | Privilege Escalation via Insecure SSH Permissions | Phoenix Contact | CHARX SEC-3150 | High | 7.8 | 2025-07-08 07:00:04 | Deep Dive |
| CVE-2025-24005 | Local Privilege Escalation via Vulnerable SSH Script | Phoenix Contact | CHARX SEC-3150 | High | 7.8 | 2025-07-08 06:59:46 | Deep Dive |
| CVE-2025-24004 | USB-C Buffer Overflow via Display Interface in EV Charging Stations | Phoenix Contact | CHARX SEC-3150 | Medium | 5.2 | 2025-07-08 06:59:32 | Deep Dive |
| CVE-2025-24003 | MQTT OOB Write Vulnerability in EichrechtAgents of German EV Charging Stations | Phoenix Contact | CHARX SEC-3150 | High | 8.2 | 2025-07-08 06:59:17 | Deep Dive |
| CVE-2025-24002 | MQTT DoS Vulnerability in German EV Charging Stations | Phoenix Contact | CHARX SEC-3150 | Medium | 5.3 | 2025-07-08 06:58:59 | Deep Dive |
| CVE-2024-11497 | Phoenix Contact: CHARX-SEC3xxx Charge controllers vulnerable to privilege escalation | PHOENIX CONTACT | CHARX SEC-3000 | High | 8.8 | 2025-01-14 13:55:58 | Deep Dive |
| CVE-2024-6788 | Phoenix Contact: update feature from CHARX controller can be used to reset a low privilege user password | PHOENIX CONTACT | CHARX SEC-3000 | High | 8.6 | 2024-08-13 13:15:03 | Deep Dive |
| CVE-2024-3913 | Phoenix Contact: Start sequence allows attack during the boot process | Phoenix Contact | CHARX SEC-3000 (1139022) | Medium | 5.9 | 2024-08-13 12:30:34 | Deep Dive |
| CVE-2024-28137 | PHOENIX CONTACT: privilege escalation due to a TOCTOU vulnerability in the CHARX Series | PHOENIX CONTACT | CHARX SEC-3000 | High | 7.8 | 2024-05-14 08:10:06 | Deep Dive |
| CVE-2024-28136 | PHOENIX CONTACT: command injection gains root privileges using the OCPP remote service | PHOENIX CONTACT | CHARX SEC-3000 | High | 7.8 | 2024-05-14 08:09:53 | Deep Dive |
| CVE-2024-28135 | PHOENIX CONTACT: command injection vulnerability in the API of the CHARX Series | PHOENIX CONTACT | CHARX SEC-3000 | Medium | 5.0 | 2024-05-14 08:09:40 | Deep Dive |
| CVE-2024-28134 | PHOENIX CONTACT: MitM attack gains privileges of the current logged in user in CHARX Series | PHOENIX CONTACT | CHARX SEC-3000 | High | 7.0 | 2024-05-14 08:09:25 | Deep Dive |
| CVE-2024-28133 | PHOENIX CONTACT: Privilege escalation in CHARX Series | PHOENIX CONTACT | CHARX SEC-3000 | High | 7.8 | 2024-05-14 08:09:11 | Deep Dive |
| CVE-2024-26288 | PHOENIX CONTACT: Lack of SSL support in CHARX Series | PHOENIX CONTACT | CHARX SEC-3000 | High | 8.7 | 2024-03-12 08:13:05 | Deep Dive |
| CVE-2024-26005 | PHOENIX CONTACT: Privilege gain through incomplete cleanup in CHARX Series | PHOENIX CONTACT | CHARX SEC-3000 | Medium | 4.8 | 2024-03-12 08:12:49 | Deep Dive |