CVE-2023-0757

Summary

Incorrect Permission Assignment for Critical Resource vulnerability in PHOENIX CONTACT MULTIPROG, PHOENIX CONTACT ProConOS eCLR (SDK) allows an unauthenticated remote attacker to upload arbitrary malicious code and gain full access on the affected device.

Affected Software

VendorProductVersion RangeStatus
PHOENIX CONTACTMULTIPROGallaffected
PHOENIX CONTACTProConOS eCLR (SDK)allaffected

Weaknesses

  • CWE-732: CWE-732 Incorrect Permission Assignment for Critical Resource

ADP Enrichment

CVE Program Container

Additional References

References