CNNVD-202510-2069 Information
CNNVD ID
CNNVD-202510-2069
Related CVE
- CNNVD Published: 2025-10-14
Description (Chinese)
Phoenix Contact QUINT4-UPS/24DC/24DC/10/EIP等都是德国菲尼克斯电气(Phoenix Contact)公司的一款工业级直流不间断电源模块。 Phoenix Contact多款产品存在安全漏洞,该漏洞源于未经身份验证的攻击者可发送特定功能和子功能代码,可能导致Modbus服务拒绝服务攻击。以下产品受到影响:QUINT4-UPS/24DC/24DC/5/EIP、QUINT4-UPS/24DC/24DC/10/EIP和QUINT4-UPS/24DC/24DC/20/EIP。
Description (English)
Phoenix Contact QUINT4-UPS/24DC/24DC/10/EIP is an industrial-level uninterruptible direct power supply module of Phoneix Contact, Germany. Phoenix Contact has a safety gap in its many products, which stems from the fact that unidentified assailants can send specific functional and sub-functional codes, which could lead to a Modbus service denial attack. The following products were affected: QUINT4-UPS/24DC/5/EIP, QUINT4-UPS/24DC/10/EIP and QUINT4-UPS/24DC/24DC/20/EIP.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
菲尼克斯电气
Published
2025-10-14
Last Modified
2026-02-24
References
https://certvde.com/de/advisories/VDE-2025-072