In PHOENIX CONTACT Automationworx Software Suite up to version 1.89 manipulated PC Worx or Config+ files could lead to a heap buffer overflow and a read access violation. Availability, integrity, or confidentiality of an application programming workstation might be compromised by attacks using these vulnerabilities.
References
Link | Resource |
---|---|
https://cert.vde.com/en/advisories/VDE-2022-048/ | Third Party Advisory |
Configurations
Information
Published : 2022-11-15 03:15
Updated : 2022-11-17 07:06
NVD link : CVE-2022-3461
Mitre link : CVE-2022-3461
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
phoenixcontact
- automationworx_software_suite