| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-41747 | Reflected XSS vulnerability in pxc_vlanIntfCfg.php | Phoenix Contact | FL SWITCH 2005 | High | 7.1 | 2025-12-09 08:09:26 | Deep Dive |
| CVE-2025-41748 | Reflected XSS vulnerability in pxc_Dot1xCfg.php | Phoenix Contact | FL SWITCH 2005 | High | 7.1 | 2025-12-09 08:09:01 | Deep Dive |
| CVE-2025-41749 | Reflected XSS vulnerability in port_util.php | Phoenix Contact | FL SWITCH 2005 | High | 7.1 | 2025-12-09 08:08:36 | Deep Dive |
| CVE-2025-41750 | Reflected XSS vulnerability in pxc_PortCfg.php | Phoenix Contact | FL SWITCH 2005 | High | 7.1 | 2025-12-09 08:07:59 | Deep Dive |
| CVE-2025-41751 | Reflected XSS vulnerability in pxc_portCntr.php | Phoenix Contact | FL SWITCH 2005 | High | 7.1 | 2025-12-09 08:07:37 | Deep Dive |
| CVE-2025-41752 | Reflected XSS vulnerability in pxc_portSfp.php | Phoenix Contact | FL SWITCH 2005 | High | 7.1 | 2025-12-09 08:07:03 | Deep Dive |
| CVE-2025-41699 | Phoenix Contact: Security Advisory for CHARX SEC-3xxx charging controllers | Phoenix Contact | CHARX SEC-3150 | High | 8.8 | 2025-10-14 08:35:05 | Deep Dive |
| CVE-2025-41707 | Phoenix Contact: WebSocket Handler Denial of Service | Phoenix Contact | QUINT4-UPS/24DC/24DC/5/EIP | Medium | 5.3 | 2025-10-14 08:06:11 | Deep Dive |
| CVE-2025-41706 | Phoenix Contact: Webserver Denial of Service through Malformed Content-Length | Phoenix Contact | QUINT4-UPS/24DC/24DC/5/EIP | Medium | 5.3 | 2025-10-14 08:05:56 | Deep Dive |
| CVE-2025-41705 | Phoenix Contact: WebSocket Message Interception Leaks Webfrontend Credentials | Phoenix Contact | QUINT4-UPS/24DC/24DC/5/EIP | Medium | 6.8 | 2025-10-14 08:05:43 | Deep Dive |
| CVE-2025-41704 | Phoenix Contact: Unauthenticated Modbus Service DoS via Crafted Function Code | Phoenix Contact | QUINT4-UPS/24DC/24DC/5/EIP | Medium | 5.3 | 2025-10-14 08:05:34 | Deep Dive |
| CVE-2025-41703 | Phoenix Contact: UPS Shutdown via Unauthenticated Modbus Command | Phoenix Contact | QUINT4-UPS/24DC/24DC/5/EIP | High | 7.5 | 2025-10-14 08:05:23 | Deep Dive |
| CVE-2025-9677 | Modo Legend of the Phoenix com.duige.hzw.multilingual AndroidManifest.xml improper export of android application components | Modo | Legend of the Phoenix | Medium | 5.3 | 2025-08-29 21:02:08 | Deep Dive |
| CVE-2025-41686 | Improper File Permissions Allow Local Privilege Escalation | Phoenix Contact | DaUM | High | 7.8 | 2025-08-12 07:37:01 | Deep Dive |
| CVE-2025-2813 | HTTP Service DoS Vulnerability | Phoenix Contact | AXL F BK PN TPS | High | 7.5 | 2025-07-31 10:08:24 | Deep Dive |
| CVE-2025-41668 | Phoenix Contact: File access due to the replacement of a critical file used by the service security-profile | PHOENIX CONTACT | AXC F 1152 | High | 8.8 | 2025-07-08 07:04:23 | Deep Dive |
| CVE-2025-41667 | Phoenix Contact: File access due to the replacement of a critical file used by the arp-preinit script | PHOENIX CONTACT | AXC F 1152 | High | 8.8 | 2025-07-08 07:03:51 | Deep Dive |
| CVE-2025-41666 | Phoenix Contact: File access due to the replacement of a critical file used by the watchdog | PHOENIX CONTACT | AXC F 1152 | High | 8.8 | 2025-07-08 07:03:38 | Deep Dive |
| CVE-2025-41665 | Phoenix Contact: DoS of the PLC due to incorrect default permissions possible | PHOENIX CONTACT | AXC F 1152 | Medium | 6.5 | 2025-07-08 07:03:26 | Deep Dive |
| CVE-2025-25271 | OCPP Backend Configuration via Insecure Defaults | Phoenix Contact | CHARX SEC-3150 | High | 8.8 | 2025-07-08 07:01:33 | Deep Dive |