Phoenixcontact Plcnext Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Phoenixcontact Plcnext Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2020-12517 — CVSS 8.8 (high): On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an authenticated low privileged user could embed malicious Javascript…
CVE-2020-12519 — CVSS 8.8 (high): On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use this vulnerability i.e. to open a reverse shell…
CVE-2020-12521 — CVSS 6.5 (medium): On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS a specially crafted LLDP packet may lead to a high system load in the…
CVE-2020-12518 — CVSS 5.5 (medium): On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use the knowledge gained by reading the…