CNNVD-202507-863 Information
Jul 08, 2025
cve
CNNVD ID
CNNVD-202507-863
Related CVE
- CNNVD Published: 2025-07-08
Description (Chinese)
PHOENIX CONTACT CHARX SEC是德国菲尼克斯电气(PHOENIX CONTACT)公司的一系列 AC 充电控制器。 PHOENIX CONTACT CHARX SEC存在输入验证错误漏洞,该漏洞源于本地攻击者可通过SSH利用存在漏洞的脚本,由于输入验证不当导致权限提升至root。
Description (English)
PHOENIX CONTATT CHARX SEC is a series of AC charge controllers for PHOENIX CONTACT in Germany. PHOENIX CONTATT CHARX SEC has an input verification error gap, which stems from the fact that local assailants can use the leaked script through SSH, which has led to the extension of permission to root as a result of input error.
Hazard Level
Medium
Vulnerability Type
输入验证错误
Affected Vendor
Phoenix Site
Published
2025-07-08
Last Modified
2026-02-24
References
https://certvde.com/de/advisories/VDE-2025-014
Patch
https://www.phoenixcontact.com/en-us/
Share on: