CVE-2023-1109
8.8
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In Phoenix Contacts ENERGY AXC PU Web service an authenticated restricted user of the web frontend can access, read, write and create files throughout the file system using specially crafted URLs via the upload and download functionality of the web service. This may lead to full control of the service.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| PHOENIX CONTACT | ENERGY AXC PU (1264327) | V01.00.00.00 <= V04.15.00.00 | affected |
| PHOENIX CONTACT | SMARTRTU AXC SG (1110435) | V01.00.00.00 <= V01.08.00.02 | affected |
| PHOENIX CONTACT | SMARTRTU AXC IG (1264328) | V01.00.00.00 <= V01.02.00.01 | affected |
| PHOENIX CONTACT | Infobox (1169323 ) | V01.00.00.00 <= V02.02.00.00 | affected |
Weaknesses
- CWE-22: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.