CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-16723

A Cross-site Scripting issue was discovered in PHOENIX CONTACT FL COMSERVER BASIC 232/422/485, FL COMSERVER UNI 232/422/485, FL COMSERVER BAS 232/422/485-T, FL COMSERVER UNI 232/422/485-T, FL COM SERVER RS232, FL COM SERVER RS485, and PSI-MODEM/ETH (running firmware versions prior to 1.99, 2.20, or 2.40). The cross-site scripting vulnerability has been identified, which may allow remote code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.1%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

Products affected by CVE-2017-16723

Phoenixcontact » Fl Com Server Rs232 » Version: N/A

cpe:2.3:h:phoenixcontact:fl_com_server_rs232:-
Phoenixcontact » Fl Com Server Rs485 » Version: N/A

cpe:2.3:h:phoenixcontact:fl_com_server_rs485:-
Phoenixcontact » Fl Comserver Bas 232 » Version: N/A

cpe:2.3:h:phoenixcontact:fl_comserver_bas_232:-
Phoenixcontact » Fl Comserver Bas 422 » Version: N/A

cpe:2.3:h:phoenixcontact:fl_comserver_bas_422:-
Phoenixcontact » Fl Comserver Bas 485-T » Version: N/A

cpe:2.3:h:phoenixcontact:fl_comserver_bas_485-t:-
Phoenixcontact » Fl Comserver Basic 232 » Version: N/A

cpe:2.3:h:phoenixcontact:fl_comserver_basic_232:-
Phoenixcontact » Fl Comserver Basic 422 » Version: N/A

cpe:2.3:h:phoenixcontact:fl_comserver_basic_422:-
Phoenixcontact » Fl Comserver Basic 485 » Version: N/A

cpe:2.3:h:phoenixcontact:fl_comserver_basic_485:-
Phoenixcontact » Fl Comserver Uni 232 » Version: N/A

cpe:2.3:h:phoenixcontact:fl_comserver_uni_232:-
Phoenixcontact » Fl Comserver Uni 422 » Version: N/A

cpe:2.3:h:phoenixcontact:fl_comserver_uni_422:-
Phoenixcontact » Fl Comserver Uni 485-T » Version: N/A

cpe:2.3:h:phoenixcontact:fl_comserver_uni_485-t:-
Phoenixcontact » Fl Comserver Uni 485 » Version: N/A

cpe:2.3:h:phoenixcontact:fl_comserver_uni_485:-
Phoenixcontact » Psi-Modem/eth » Version: N/A

cpe:2.3:h:phoenixcontact:psi-modem/eth:-
Phoenixcontact » Fl Com Server Rs232 Firmware » Version: 1.99

cpe:2.3:o:phoenixcontact:fl_com_server_rs232_firmware:1.99
Phoenixcontact » Fl Com Server Rs485 Firmware » Version: 1.99

cpe:2.3:o:phoenixcontact:fl_com_server_rs485_firmware:1.99
Phoenixcontact » Fl Comserver Bas 232 Firmware » Version: 2.40

cpe:2.3:o:phoenixcontact:fl_comserver_bas_232_firmware:2.40
Phoenixcontact » Fl Comserver Bas 422 Firmware » Version: 2.40

cpe:2.3:o:phoenixcontact:fl_comserver_bas_422_firmware:2.40
Phoenixcontact » Fl Comserver Bas 485-T Firmware » Version: 2.40

cpe:2.3:o:phoenixcontact:fl_comserver_bas_485-t_firmware:2.40
Phoenixcontact » Fl Comserver Basic 232 Firmware » Version: 2.40

cpe:2.3:o:phoenixcontact:fl_comserver_basic_232_firmware:2.40
Phoenixcontact » Fl Comserver Basic 422 Firmware » Version: 2.40

cpe:2.3:o:phoenixcontact:fl_comserver_basic_422_firmware:2.40
Phoenixcontact » Fl Comserver Basic 485 Firmware » Version: 2.40

cpe:2.3:o:phoenixcontact:fl_comserver_basic_485_firmware:2.40
Phoenixcontact » Fl Comserver Uni 232 Firmware » Version: 2.40

cpe:2.3:o:phoenixcontact:fl_comserver_uni_232_firmware:2.40
Phoenixcontact » Fl Comserver Uni 422 Firmware » Version: 2.40

cpe:2.3:o:phoenixcontact:fl_comserver_uni_422_firmware:2.40
Phoenixcontact » Fl Comserver Uni 485-T Firmware » Version: 2.40

cpe:2.3:o:phoenixcontact:fl_comserver_uni_485-t_firmware:2.40
Phoenixcontact » Fl Comserver Uni 485 Firmware » Version: 2.40

cpe:2.3:o:phoenixcontact:fl_comserver_uni_485_firmware:2.40
Phoenixcontact » Psi-Modem/eth Firmware » Version: 2.20

cpe:2.3:o:phoenixcontact:psi-modem/eth_firmware:2.20

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-16723

Products

Pricing

Contact Us