| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-41668 | Phoenix Contact: File access due to the replacement of a critical file used by the service security-profile | PHOENIX CONTACT | AXC F 1152 | High | 8.8 | 2025-07-08 07:04:23 | Deep Dive |
| CVE-2025-41667 | Phoenix Contact: File access due to the replacement of a critical file used by the arp-preinit script | PHOENIX CONTACT | AXC F 1152 | High | 8.8 | 2025-07-08 07:03:51 | Deep Dive |
| CVE-2025-41666 | Phoenix Contact: File access due to the replacement of a critical file used by the watchdog | PHOENIX CONTACT | AXC F 1152 | High | 8.8 | 2025-07-08 07:03:38 | Deep Dive |
| CVE-2025-41665 | Phoenix Contact: DoS of the PLC due to incorrect default permissions possible | PHOENIX CONTACT | AXC F 1152 | Medium | 6.5 | 2025-07-08 07:03:26 | Deep Dive |
| CVE-2023-46144 | PHOENIX CONTACT: PLCnext Control prone to download of code without integrity check | PHOENIX CONTACT | AXC F 1152 | Medium | 6.5 | 2023-12-14 14:08:07 | Deep Dive |
| CVE-2023-46142 | PHOENIX CONTACT: Insufficient Read and Write Protection to Logic and Runtime Data in PLCnext Control | PHOENIX CONTACT | AXC F 1152 | High | 8.8 | 2023-12-14 14:05:36 | Deep Dive |
| CVE-2020-12519 | Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS: An attacker can use this vulnerability i.e. to open a reverse shell with root privileges. | Phoenix Contact | AXC F 1152 (1151412) | High | 8.8 | 2020-12-17 22:43:15 | Deep Dive |
| CVE-2020-12521 | Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS: A specially crafted LLDP packet may lead to a high system load in the PROFINET stack. | Phoenix Contact | AXC F 1152 (1151412) | Medium | 6.5 | 2020-12-17 22:43:15 | Deep Dive |
| CVE-2020-12517 | Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS: An authenticated low privileged user could embed malicious Javascript code to gain admin rights when the admin user visits the vulnerable website (local privilege escalation). | Phoenix Contact | AXC F 1152 (1151412) | High | 8.8 | 2020-12-17 22:43:14 | Deep Dive |
| CVE-2020-12518 | Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS: An attacker can use the knowledge gained by reading the insufficiently protected sensitive information to plan further attacks. | Phoenix Contact | AXC F 1152 (1151412) | Medium | 5.5 | 2020-12-17 22:43:14 | Deep Dive |