CVE-2025-25270
9.8CRITICALAn unauthenticated remote attacker can alter the device configuration in a way to get remote code execution as root with specific configurations.
Published: 7/8/2025Updated: 7/11/2025
Description
An unauthenticated remote attacker can alter the device configuration in a way to get remote code execution as root with specific configurations.
AI AnalysisPowered by AI
Affected Products
phoenixcontactcharx_sec-3000_firmware
phoenixcontactcharx_sec-3000
-
phoenixcontactcharx_sec-3050_firmware
phoenixcontactcharx_sec-3050
-
phoenixcontactcharx_sec-3100_firmware
phoenixcontactcharx_sec-3100
-
phoenixcontactcharx_sec-3150_firmware
phoenixcontactcharx_sec-3150
-
References
- https://certvde.com/de/advisories/VDE-2025-019Third Party Advisory