CNNVD-202507-871 Information
Jul 08, 2025
cve
CNNVD ID
CNNVD-202507-871
Related CVE
- CNNVD Published: 2025-07-08
Description (Chinese)
PHOENIX CONTACT AXC F 1152等都是德国菲尼克斯电气(PHOENIX CONTACT)公司的一款控制器设备。 PHOENIX CONTACT多款产品存在后置链接漏洞,该漏洞源于看门狗使用的关键文件可被替换,可能导致低权限攻击者获取任意文件访问权限。
Description (English)
PHOENIX CONTACT AXC F 1152 and others are all control equipment of PHOENIX CONTACT, Germany. PHOENIX CONTACT has a post-link loophole, which stems from the replacement of key documents used by watch dogs, which may lead to the acquisition of arbitrary file access by low-authority attackers.
Hazard Level
Medium
Vulnerability Type
后置链接
Affected Vendor
Phoenix Site
Published
2025-07-08
Last Modified
2026-02-24
References
https://certvde.com/en/advisories/VDE-2025-054
Patch
https://www.phoenixcontact.com/en-us/
Share on: