1. Home
  2. CVE Database
  3. CVE-2019-9201
CRITICAL · 9.8

CVE-2019-9201

Multiple Phoenix Contact devices allow remote attackers to establish TCP sessions to port 1962 and obtain sensitive information or make changes, as demonstrated by using the Create Backup feature to t...

Vulnerability Description

Multiple Phoenix Contact devices allow remote attackers to establish TCP sessions to port 1962 and obtain sensitive information or make changes, as demonstrated by using the Create Backup feature to traverse all directories.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
PhoenixcontactIlc 131 Eth Firmware-
PhoenixcontactIlc 131 Eth-
PhoenixcontactIlc 131 Eth\/Xc Firmware-
PhoenixcontactIlc 131 Eth\/Xc-
PhoenixcontactIlc 151 Eth Firmware-
PhoenixcontactIlc 151 Eth-
PhoenixcontactIlc 151 Eth\/Xc Firmware-
PhoenixcontactIlc 151 Eth\/Xc-
PhoenixcontactIlc 171 Eth 2Tx Firmware-
PhoenixcontactIlc 171 Eth 2Tx-
PhoenixcontactIlc 191 Eth 2Tx Firmware-
PhoenixcontactIlc 191 Eth 2Tx-
PhoenixcontactIlc 191 Me\/An Firmware-
PhoenixcontactIlc 191 Me\/An-
PhoenixcontactAxc 1050 Firmware-
PhoenixcontactAxc 1050-

Related Weaknesses (CWE)

CWE-306

References

FAQ

What is CVE-2019-9201?

CVE-2019-9201 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Multiple Phoenix Contact devices allow remote attackers to establish TCP sessions to port 1962 and obtain sensitive information or make changes, as demonstrated by using the Create Backup feature to t...

How severe is CVE-2019-9201?

CVE-2019-9201 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2019-9201?

Check the references section above for vendor advisories and patch information. Affected products include: Phoenixcontact Ilc 131 Eth Firmware, Phoenixcontact Ilc 131 Eth, Phoenixcontact Ilc 131 Eth\/Xc Firmware, Phoenixcontact Ilc 131 Eth\/Xc, Phoenixcontact Ilc 151 Eth Firmware.