CVE-2025-41665

Summary

An low privileged remote attacker can enforce the watchdog of the affected devices to reboot the PLC due to incorrect default permissions of a config file.

Affected Software

VendorProductVersion RangeStatus
PHOENIX CONTACTAXC F 11520 < 2025.0.2affected
PHOENIX CONTACTAXC F 21520 < 2025.0.2affected
PHOENIX CONTACTAXC F 31520 < 2025.0.2affected
PHOENIX CONTACTBPC 9102S0 < 2025.0.2affected
PHOENIX CONTACTRFC 4072S0 < 2025.0.2affected

Weaknesses

  • CWE-276: CWE-276 Incorrect Default Permissions

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References