Limited Read-Access Vulnerability in PHOENIX CONTACTs WP 6xxx Series Web Panels

Limited Read-Access Vulnerability in PHOENIX CONTACTs WP 6xxx Series Web Panels

CVE-2023-37855 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with low privileges is able to gain limited read-access to the device-filesystem within the embedded Qt browser.

Learn more about our Web App Pen Testing.