CVE-2025-41717

Summary

An unauthenticated remote attacker can trick a high privileged user into uploading a malicious payload via the config-upload endpoint, leading to code injection as root. This results in a total loss of confidentiality, availability and integrity due to improper control of code generation ('Code Injection’).

Affected Software

VendorProductVersion RangeStatus
Phoenix ContactTC ROUTER 3002T-3G0.0.0 < 3.08.8affected
Phoenix ContactTC ROUTER 2002T-3G0.0.0 < 3.08.8affected
Phoenix ContactTC ROUTER 3002T-4G0.0.0 < 3.08.8affected
Phoenix ContactTC ROUTER 3002T-4G GL0.0.0 < 3.08.8affected
Phoenix ContactTC ROUTER 5004T-5G EU0.0.0 < 1.06.23affected
Phoenix ContactTC ROUTER 3002T-4G VZW0.0.0 < 3.08.8affected
Phoenix ContactTC ROUTER 3002T-4G ATT0.0.0 < 3.08.8affected
Phoenix ContactTC ROUTER 2002T-4G0.0.0 < 3.08.8affected
Phoenix ContactCLOUD CLIENT 1101T-TX/TX0.0.0 < 3.07.7affected
Phoenix ContactTC CLOUD CLIENT 1002-4G ATT0.0.0 < 3.08.8affected
Phoenix ContactTC CLOUD CLIENT 1002-TX/TX0.0.0 < 3.07.7affected

Weaknesses

  • CWE-94: CWE-94 Improper Control of Generation of Code ('Code Injection')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References