Unauthenticated Remote Access to SNMPv2 Community String in PHOENIX CONTACTs WP 6xxx Series Web Panels

Unauthenticated Remote Access to SNMPv2 Community String in PHOENIX CONTACTs WP 6xxx Series Web Panels

CVE-2023-37860 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote unauthenticated attacker can obtain the r/w community string of the SNMPv2 daemon.

Learn more about our Web App Pen Testing.