CVE-2022-31800
Published: Jun 21, 2022
Modified: Jun 2, 2026
CVSS v3.1
9.8
Description
An unauthenticated, remote attacker could upload malicious logic to devices based on ProConOS/ProConOS eCLR in order to gain full control over the device.
| Vendor | Product | Versions |
|---|---|---|
PHOENIX CONTACT | ILC 1x0 | affected All Versions |
PHOENIX CONTACT | ILC 1x1 | affected All Versions |
PHOENIX CONTACT | ILC 1x1 GSM/GPRS | affected All Versions |
PHOENIX CONTACT | ILC 3xx | affected All Versions |
PHOENIX CONTACT | AXC 1050 | affected All Versions |
PHOENIX CONTACT | AXC 1050 XC | affected All Versions |
PHOENIX CONTACT | AXC 3050 | affected All Versions |
PHOENIX CONTACT | RFC 480S PN 4TX | affected All Versions |
PHOENIX CONTACT | RFC 470 PN 3TX | affected All Versions |
PHOENIX CONTACT | RFC 470S PN 3TX | affected All Versions |
PHOENIX CONTACT | RFC 460R PN 3TX | affected All Versions |
PHOENIX CONTACT | RFC 460R PN 3TX-S | affected All Versions |
PHOENIX CONTACT | RFC 430 ETH-IB | affected All Versions |
PHOENIX CONTACT | RFC 450 ETH-IB | affected All Versions |
PHOENIX CONTACT | PC WORX SRT | affected All Versions |
PHOENIX CONTACT | PC WORX RT BASIC | affected All Versions |
PHOENIX CONTACT | FC 350 PCI ETH | affected All Versions |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now