Phoenixcontact Automationworx Software Suite — known CVE vulnerabilities
Every CVE whose affected-product data names Phoenixcontact Automationworx Software Suite, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2023-46141 — CVSS 9.8 (critical): Incorrect Permission Assignment for Critical Resource vulnerability in multiple products of the PHOENIX CONTACT classic line allow an…
CVE-2019-12870 — CVSS 8.8 (high): An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC…
CVE-2019-12871 — CVSS 8.8 (high): An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC…
CVE-2019-12869 — CVSS 8.8 (high): An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC…
CVE-2022-3461 — CVSS 7.8 (high): In PHOENIX CONTACT Automationworx Software Suite up to version 1.89 manipulated PC Worx or Config+ files could lead to a heap buffer…
CVE-2022-3737 — CVSS 7.8 (high): In PHOENIX CONTACT Automationworx Software Suite up to version 1.89 memory can be read beyond the intended scope due to insufficient…
CVE-2023-46143 — CVSS 7.5 (high): Download of Code Without Integrity Check vulnerability in PHOENIX CONTACT classic line PLCs allows an unauthenticated remote attacker to…