← back
CVE-2023-3526

PHOENIX CONTACT: Cross-site Scripting vulnerability in TC ROUTER, TC CLOUD CLIENT and CLOUD CLIENT devices

CVSS 9.6 CRITICALEPSS 1.6%CWE-79
In PHOENIX CONTACTs TC ROUTER and TC CLOUD CLIENT in versions prior to 2.07.2 as well as CLOUD CLIENT 1101T-TX/TX prior to 2.06.10 an unauthenticated remote attacker could use a reflective XSS within the license viewer page of the devices in order to execute code in the context of the user's browser.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Affected products
PHOENIX CONTACT · CLOUD CLIENT 1101T-TX/TXPHOENIX CONTACT · TC CLOUD CLIENT 1002-4GPHOENIX CONTACT · TC CLOUD CLIENT 1002-4G ATTPHOENIX CONTACT · TC CLOUD CLIENT 1002-4G VZWPHOENIX CONTACT · TC ROUTER 3002T-4GPHOENIX CONTACT · TC ROUTER 3002T-4G ATTPHOENIX CONTACT · TC ROUTER 3002T-4G VZW
public PoCs found1
cve_referencepacketstormsecurity.com/files/174152/Phoenix-Contact-TC-Cloud-TC-Router-2.x-XSS-Memory-Consumption.htmlunverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/174152/Phoenix-Contact-TC-Cloud-TC-Router-2.x-XSS-Memory-Consumption.htmlhttps://cert.vde.com/en/advisories/VDE-2023-017http://seclists.org/fulldisclosure/2023/Aug/12