Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Phoenix Contact: ProConOs prone to Download of Code Without Integrity Check
Vulnerability Description
Download of Code Without Integrity Check vulnerability in PHOENIX CONTACT MULTIPROG, PHOENIX CONTACT ProConOS eCLR (SDK) allows an unauthenticated remote attacker to download and execute applications without integrity checks on the device which may result in a complete loss of integrity.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Vulnerability Type
下载代码缺少完整性检查
Vulnerability Title
PHOENIX CONTACT ProConOS/ProConOS eCLR 安全漏洞
Vulnerability Description
PHOENIX CONTACT ProConOS/ProConOS eCLR是德国菲尼克斯电气(PHOENIX CONTACT)公司的一系列嵌入式自动化设备。 PHOENIX CONTACT MULTIPROG、PHOENIX CONTACT ProConOS eCLR (SDK)存在安全漏洞,该漏洞源于系统中存在未经完整性检查的代码下载漏洞,允许未经身份验证的远程攻击者在设备上不进行完整性检查的情况下下载和执行应用程序,导致完整性完全丧失。
CVSS Information
N/A
Vulnerability Type
N/A