CVE-2024-11497

Summary

An authenticated attacker can use this vulnerability to perform a privilege escalation to gain root access.

Affected Software

VendorProductVersion RangeStatus
PHOENIX CONTACTCHARX SEC-30000 < 1.7.0affected
PHOENIX CONTACTCHARX SEC-30500 < 1.7.0affected
PHOENIX CONTACTCHARX SEC-31000 < 1.7.0affected
PHOENIX CONTACTCHARX SEC-31500 < 1.7.0affected

Weaknesses

  • CWE-732: CWE-732 Incorrect Permission Assignment for Critical Resource

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References