Vulnerability Details CVE-2023-46144
A download of code without integrity check vulnerability in PLCnext products allows an remote attacker with low privileges to compromise integrity on the affected engineering station and the connected devices.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 14.1%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2023-46144
-
cpe:2.3:a:phoenixcontact:plcnext_engineer:-
-
cpe:2.3:a:phoenixcontact:plcnext_engineer:2020-3-1
-
cpe:2.3:a:phoenixcontact:plcnext_engineer:2024.0
-
cpe:2.3:h:phoenixcontact:axc_f_1152:-
-
cpe:2.3:h:phoenixcontact:axc_f_2152:-
-
cpe:2.3:h:phoenixcontact:axc_f_3152:-
-
cpe:2.3:h:phoenixcontact:bpc_9102s:-
-
cpe:2.3:h:phoenixcontact:epc_1502:-
-
cpe:2.3:h:phoenixcontact:epc_1522:-
-
cpe:2.3:h:phoenixcontact:rfc_4072r:-
-
cpe:2.3:h:phoenixcontact:rfc_4072s:-
-
cpe:2.3:o:phoenixcontact:axc_f_1152_firmware:-
-
cpe:2.3:o:phoenixcontact:axc_f_1152_firmware:2021.0.5
-
cpe:2.3:o:phoenixcontact:axc_f_1152_firmware:2024.0
-
cpe:2.3:o:phoenixcontact:axc_f_2152_firmware:1.01
-
cpe:2.3:o:phoenixcontact:axc_f_2152_firmware:1.02
-
cpe:2.3:o:phoenixcontact:axc_f_2152_firmware:1.1.0
-
cpe:2.3:o:phoenixcontact:axc_f_2152_firmware:1.20
-
cpe:2.3:o:phoenixcontact:axc_f_2152_firmware:2021.0.5
-
cpe:2.3:o:phoenixcontact:axc_f_2152_firmware:2024.0
-
cpe:2.3:o:phoenixcontact:axc_f_3152_firmware:2021.0.5
-
cpe:2.3:o:phoenixcontact:axc_f_3152_firmware:2024.0
-
cpe:2.3:o:phoenixcontact:bpc_9102s_firmware:-
-
cpe:2.3:o:phoenixcontact:bpc_9102s_firmware:2024.0
-
cpe:2.3:o:phoenixcontact:epc_1502_firmware:-
-
cpe:2.3:o:phoenixcontact:epc_1502_firmware:2024.0
-
cpe:2.3:o:phoenixcontact:epc_1522_firmware:-
-
cpe:2.3:o:phoenixcontact:epc_1522_firmware:2024.0
-
cpe:2.3:o:phoenixcontact:rfc_4072r_firmware:-
-
cpe:2.3:o:phoenixcontact:rfc_4072r_firmware:2024.0
-
cpe:2.3:o:phoenixcontact:rfc_4072s_firmware:-
-
cpe:2.3:o:phoenixcontact:rfc_4072s_firmware:2021.0.5
-
cpe:2.3:o:phoenixcontact:rfc_4072s_firmware:2024.0