CVE-2023-3569

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Aug 8, 2023

Updated: Aug 14, 2023

CWE ID 776

Summary

CVE-2023-3569 is a vulnerability affecting PHOENIX CONTACT's TC Router and TC Cloud Client in versions below 2.07.2, and the CLOUD CLIENT 1101T-TX/TX before 2.06.10. A remote attacker with administrative privileges can exploit this issue by uploading a specially crafted XML file, leading to a denial-of-service condition. This vulnerability poses a risk for disruptions and potential downtime in industrial control systems that utilize the affected versions of these products. It is recommended to update to the latest versions as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Phoenix Contact Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r8dKT_
https://www.cve.org/CVERecord?id=CVE-2023-3569
https://nvd.nist.gov/vuln/detail/CVE-2023-3569

Back to Vulnerability Database

CVE-2023-3569

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations