CVE-2025-41669

Summary

The Web-based Management allows a remote low privileged Engineer user to install additional APPs on the device downloaded from the PLCnext Store without implementing any data verification mechanism, leading to the capability for an Engineer user to reach arbitrary code execution with root privileges on the PLC device. A successful exploitation may allow to install a manipulated APP package, potentially impacting integrity and availability of the PLCnext Control.

Affected Software

VendorProductVersion RangeStatus
Phoenix ContactAXC F 11520.0.0 < 2026.0.3affected
Phoenix ContactAXC F 12520.0.0 < 2026.0.3affected
Phoenix ContactAXC F 2000 EA0.0.0 < 2026.0.3affected
Phoenix ContactAXC F 21520.0.0 < 2026.0.3affected
Phoenix ContactAXC F 31520.0.0 < 2026.0.3affected
Phoenix ContactBPC 9102S0.0.0 < 2026.0.3affected
Phoenix ContactEPC 15220.0.0 < 2026.0.3affected
Phoenix ContactRFC 4072R0.0.0 < 2026.0.3affected
Phoenix ContactRFC 4072S0.0.0 < 2026.0.3affected
Phoenix ContactVL3 UPC 2440 EDGE0.0.0 < 2026.0.3affected
Phoenix ContactVPLCNEXT CONTROL 10000.0.0 < 2026.0.3affected
Phoenix ContactVPLCNEXT CONTROL 20000.0.0 < 2026.0.3affected
Phoenix ContactVPLCNEXT CONTROL 30000.0.0 < 2026.0.3affected
Phoenix ContactVPLCNEXT CONTROL 5000.0.0 < 2026.0.3affected

Weaknesses

  • CWE-347: CWE-347 Improper Verification of Cryptographic Signature

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References