CVE-2023-3573

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Aug 8, 2023

Updated: Aug 25, 2023

CWE ID 78

Summary

CVE-2023-3573 is a vulnerability affecting the WP 6xxx series web panels manufactured by PHOENIX CONTACT. Versions prior to 4.0.10 are susceptible to this issue. A remote attacker with limited privileges can exploit a command injection vulnerability in a font configuration operation via a HTTP POST request. Successful exploitation grants the attacker full access to the device.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r8dF8J
https://www.cve.org/CVERecord?id=CVE-2023-3573
https://nvd.nist.gov/vuln/detail/CVE-2023-3573

Back to Vulnerability Database

CVE-2023-3573

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations