CNNVD-202507-862 Information
CNNVD ID
CNNVD-202507-862
Related CVE
- CNNVD Published: 2025-07-08
Description (Chinese)
PHOENIX CONTACT CHARX SEC-3000等都是德国菲尼克斯电气(PHOENIX CONTACT)公司的产品。PHOENIX CONTACT CHARX SEC-3000是一个 AC 充电控制器。PHOENIX CONTACT CHARX SEC-3050是一个 AC 充电控制器。PHOENIX CONTACT CHARX SEC-3100是一个 AC 充电控制器。 PHOENIX CONTACT CHARX SEC-3xxx存在安全漏洞,该漏洞源于通过USB-C访问设备显示的攻击者可发送消息触发不安全复制到缓冲区,导致完整性丢失和站点临时拒绝服务。
Description (English)
PHOENIX CONTACT CHARX SEC-3000, etc., are products of PHOENIX CONTACT, Germany. PHOENIX CONTACT CHARX SEC-3000 is an AC charge controller. PHOENIX CONTACT CHARX SEC-3050 is an AC charge controller. PHOENIX CONTACT CHARX SEC-3100 is an AC charge controller. PHOENIX CONTACT CHARX SEC-3xx has a security loophole, which stems from the fact that the assailants, as shown through USB-C access equipment, can send messages that trigger unsafe copying to the buffer zone, leading to the loss of integrity and temporary denial of services.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Phoenix Site
Published
2025-07-08
Last Modified
2026-02-24
References
https://certvde.com/de/advisories/VDE-2025-014
Patch
https://www.phoenixcontact.com/en-us/
Share on: