Download of Code Without Integrity Check vulnerability in PHOENIX CONTACT classic line PLCs allows an unauthenticated remote attacker to modify some or all applications on a PLC.
References
Link | Resource |
---|---|
https://cert.vde.com/en/advisories/VDE-2023-057/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
|
Configuration 11 (hide)
|
Configuration 12 (hide)
AND |
|
Configuration 13 (hide)
|
Configuration 14 (hide)
AND |
|
Configuration 15 (hide)
AND |
|
Configuration 16 (hide)
AND |
|
Configuration 17 (hide)
AND |
|
Configuration 18 (hide)
AND |
|
History
21 Dec 2023, 17:15
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:h:phoenixcontact:ilc1x1:-:*:*:*:*:*:*:* cpe:2.3:h:phoenixcontact:rfc_430_eth-ib:-:*:*:*:*:*:*:* cpe:2.3:h:phoenixcontact:rfc_480s_pn_4tx:-:*:*:*:*:*:*:* cpe:2.3:h:phoenixcontact:pc_worx_rt_basic:-:*:*:*:*:*:*:* cpe:2.3:h:phoenixcontact:rfc_470s_pn_3tx:-:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fc_350_pci_eth_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:axc_1050_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:phoenixcontact:fc_350_pci_eth:-:*:*:*:*:*:*:* cpe:2.3:h:phoenixcontact:ilc_3xx:-:*:*:*:*:*:*:* cpe:2.3:h:phoenixcontact:rfc_450_eth-ib:-:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:rfc_430_eth-ib_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:rfc_470s_pn_3tx_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:phoenixcontact:axc_3050:-:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:ilc_3xx_firmware:*:*:*:*:*:*:*:* cpe:2.3:a:phoenixcontact:pc_worx:*:*:*:*:*:*:*:* cpe:2.3:h:phoenixcontact:axc_1050_xc:-:*:*:*:*:*:*:* cpe:2.3:a:phoenixcontact:pc_worx_srt:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:axc_1050_xc_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:ilc1x1_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:phoenixcontact:axc_1050:-:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:rfc_460r_pn_3tx_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:pc_worx_rt_basic_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:phoenixcontact:ilc1x0:-:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:ilc1x0_firmware:*:*:*:*:*:*:*:* cpe:2.3:a:phoenixcontact:pc_worx_express:*:*:*:*:*:*:*:* cpe:2.3:a:phoenixcontact:automationworx_software_suite:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:rfc_450_eth-ib_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:phoenixcontact:rfc_460r_pn_3tx:-:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:axc_3050_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:rfc_480s_pn_4tx_firmware:*:*:*:*:*:*:*:* cpe:2.3:a:phoenixcontact:config\+:*:*:*:*:*:*:*:* |
|
Summary |
|
|
First Time |
Phoenixcontact rfc 450 Eth-ib
Phoenixcontact rfc 450 Eth-ib Firmware Phoenixcontact ilc1x1 Firmware Phoenixcontact rfc 470s Pn 3tx Phoenixcontact pc Worx Express Phoenixcontact pc Worx Rt Basic Phoenixcontact pc Worx Srt Phoenixcontact automationworx Software Suite Phoenixcontact fc 350 Pci Eth Firmware Phoenixcontact rfc 430 Eth-ib Firmware Phoenixcontact axc 1050 Phoenixcontact rfc 430 Eth-ib Phoenixcontact axc 3050 Firmware Phoenixcontact axc 1050 Firmware Phoenixcontact rfc 480s Pn 4tx Firmware Phoenixcontact rfc 470s Pn 3tx Firmware Phoenixcontact Phoenixcontact rfc 460r Pn 3tx Firmware Phoenixcontact pc Worx Phoenixcontact config\+ Phoenixcontact pc Worx Rt Basic Firmware Phoenixcontact ilc1x1 Phoenixcontact rfc 460r Pn 3tx Phoenixcontact axc 3050 Phoenixcontact ilc1x0 Firmware Phoenixcontact rfc 480s Pn 4tx Phoenixcontact fc 350 Pci Eth Phoenixcontact ilc 3xx Firmware Phoenixcontact ilc 3xx Phoenixcontact axc 1050 Xc Phoenixcontact axc 1050 Xc Firmware Phoenixcontact ilc1x0 |
|
References | () https://cert.vde.com/en/advisories/VDE-2023-057/ - Third Party Advisory |
14 Dec 2023, 14:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-12-14 14:15
Updated : 2023-12-21 17:15
NVD link : CVE-2023-46143
Mitre link : CVE-2023-46143
CVE.ORG link : CVE-2023-46143
JSON object : View
Products Affected
phoenixcontact
- pc_worx_rt_basic
- ilc1x1
- ilc1x0
- rfc_430_eth-ib
- rfc_460r_pn_3tx_firmware
- rfc_470s_pn_3tx
- axc_1050
- rfc_450_eth-ib
- ilc1x0_firmware
- rfc_470s_pn_3tx_firmware
- config\+
- fc_350_pci_eth
- axc_1050_xc
- axc_1050_firmware
- ilc_3xx_firmware
- ilc_3xx
- pc_worx_express
- automationworx_software_suite
- rfc_460r_pn_3tx
- pc_worx_srt
- rfc_450_eth-ib_firmware
- rfc_480s_pn_4tx
- axc_3050_firmware
- pc_worx_rt_basic_firmware
- axc_1050_xc_firmware
- axc_3050
- rfc_480s_pn_4tx_firmware
- rfc_430_eth-ib_firmware
- pc_worx
- fc_350_pci_eth_firmware
- ilc1x1_firmware
CWE
CWE-494
Download of Code Without Integrity Check