Phoenixcontact Plcnext Engineer — known CVE vulnerabilities
Every CVE whose affected-product data names Phoenixcontact Plcnext Engineer, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-3935 — CVSS 9.8 (critical): A heap buffer overflow vulnerability in Wibu CodeMeter Runtime network service up to version 7.60b allows an unauthenticated, remote…
CVE-2023-46142 — CVSS 8.8 (high): A incorrect permission assignment for critical resource vulnerability in PLCnext products allows an remote attacker with low privileges to…
CVE-2020-12499 — CVSS 8.2 (high): In PHOENIX CONTACT PLCnext Engineer version 2020.3.1 and earlier an improper path sanitation vulnerability exists on import of project…
CVE-2023-46144 — CVSS 6.5 (medium): A download of code without integrity check vulnerability in PLCnext products allows an remote attacker with low privileges to compromise…