A local attacker with a local user account can leverage a vulnerable script via SSH to escalate privileges to root due to improper input validation.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HPhoenixcontact Charx Sec 3000
HWPhoenixcontactwszystkie wersjePhoenixcontact Charx Sec 3000 Firmware
OSPhoenixcontact< 1.7.3Phoenixcontact Charx Sec 3050
HWPhoenixcontactwszystkie wersjePhoenixcontact Charx Sec 3050 Firmware
OSPhoenixcontact< 1.7.3Phoenixcontact Charx Sec 3100
HWPhoenixcontactwszystkie wersjePhoenixcontact Charx Sec 3100 Firmware
OSPhoenixcontact< 1.7.3Phoenixcontact Charx Sec 3150
HWPhoenixcontactwszystkie wersjePhoenixcontact Charx Sec 3150 Firmware
OSPhoenixcontact< 1.7.3
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
LPE
CWE
References
Related vulnerabilities
CVE-2025-25270CRITICAL9.8PL ✓ten sam produkt
RCE jako root w sterownikach ładowania Phoenix Contact CHARX SEC-3x00
CVE-2024-25995CRITICAL9.8PL ✓ten sam produkt
RCE i eskalacja uprawnień w Phoenix Contact CHARX SEC — brak walidacji danych wejściowych
CVE-2025-24006HIGH7.8ten sam produkt
A low privileged local attacker can leverage insecure permissions via SSH on the affected devices to escalate ...
CVE-2025-24003HIGH8.2ten sam produkt
An unauthenticated remote attacker can use MQTT messages to trigger out-of-bounds writes in charging stations ...
CVE-2025-25268HIGH8.8ten sam produkt
An unauthenticated adjacent attacker can modify configuration by sending specific requests to an API-endpoint ...