Phoenixcontact Pc Worx Express — known CVE vulnerabilities
Every CVE whose affected-product data names Phoenixcontact Pc Worx Express, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2023-46141 — CVSS 9.8 (critical): Incorrect Permission Assignment for Critical Resource vulnerability in multiple products of the PHOENIX CONTACT classic line allow an…
CVE-2020-12497 — CVSS 7.8 (high): PLCopen XML file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and earlier can lead to a stack-based overflow…
CVE-2020-12498 — CVSS 7.8 (high): mwe file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and earlier is vulnerable to out-of-bounds read remote code…
CVE-2019-16675 — CVSS 7.8 (high): An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86, and Config+ through 1.86. A manipulated PC…
CVE-2021-34597 — CVSS 7.8 (high): Improper Input Validation vulnerability in PC Worx Automation Suite of Phoenix Contact up to version 1.88 could allow an attacker with a…
CVE-2021-33542 — CVSS 7.8 (high): Phoenix Contact Classic Automation Worx Software Suite in Version 1.87 and below is affected by a remote code execution vulnerability…
CVE-2023-46143 — CVSS 7.5 (high): Download of Code Without Integrity Check vulnerability in PHOENIX CONTACT classic line PLCs allows an unauthenticated remote attacker to…