Phoenixcontact Charx_sec-3050_firmware

29 CVEs affecting Phoenixcontact Charx_sec-3050_firmware. Latest disclosed: 2025-07-08. Critical: 2, High: 18.

Top CVEs affecting Phoenixcontact Charx_sec-3050_firmware
CVESeverityScorePublishedSummary
CVE-2025-25270Critical9.82025-07-08An unauthenticated remote attacker can alter the device configuration in a way to get remote code execution as root with specific configurations.
CVE-2024-25995Critical9.82024-03-12An unauthenticated remote attacker can modify configurations to perform a remote code execution, gain root rights or perform an DoS due to improper input valid…
CVE-2025-25271High8.82025-07-08An unauthenticated adjacent attacker is able to configure a new OCPP backend, due to insecure defaults for the configuration interface.
CVE-2025-25268High8.82025-07-08An unauthenticated adjacent attacker can modify configuration by sending specific requests to an API-endpoint resulting in read and write access due to missing…
CVE-2024-26288High8.72024-03-12An unauthenticated remote attacker can influence the communication due to the lack of encryption of sensitive data via a MITM. Charging is not affected.
CVE-2024-6788High8.62024-08-13A remote unauthenticated attacker can use the firmware update feature on the LAN interface of the device to reset the password for the predefined, low-privileg…
CVE-2025-25269High8.42025-07-08An unauthenticated local attacker can inject a command that is subsequently executed as root, leading to a privilege escalation.
CVE-2024-25999High8.42024-03-12An unauthenticated local attacker can perform a privilege escalation due to improper input validation in the OCPP agent service. 
CVE-2025-24003High8.22025-07-08An unauthenticated remote attacker can use MQTT messages to trigger out-of-bounds writes in charging stations complying with German Calibration Law, resulting…
CVE-2025-24006High7.82025-07-08A low privileged local attacker can leverage insecure permissions via SSH on the affected devices to escalate privileges to root.
CVE-2025-24005High7.82025-07-08A local attacker with a local user account can leverage a vulnerable script via SSH to escalate privileges to root due to improper input validation.
CVE-2024-28137High7.82024-05-14 A local attacker with low privileges can perform a privilege escalation with an init script due…
CVE-2024-28136High7.82024-05-14A local attacker with low privileges can use a command injection vulnerability to gain root privileges due to improper input validation using the OCPP Remote s…
CVE-2024-28133High7.82024-05-14 A local low privileged attacker can use an untrusted search path in a CHARX system utility to gain root privileges.  …
CVE-2024-26002High7.82024-03-12An improper input validation in the Qualcom plctool allows a local attacker with low privileges to gain root access by changing the ownership of specific files.
CVE-2024-26004High7.52024-03-12An unauthenticated remote attacker can DoS a control agent due to access of a uninitialized pointer which may prevent or disrupt the charging functionality.
CVE-2024-26003High7.52024-03-12An unauthenticated remote attacker can DoS the control agent due to a out-of-bounds read which may prevent or disrupt the charging functionality. 
CVE-2024-26001High7.42024-03-12An unauthenticated remote attacker can write memory out of bounds due to improper input validation in the MQTT stack. The brute force attack is not always succ…
CVE-2024-25998High7.32024-03-12An unauthenticated remote attacker can perform a command injection in the OCPP Service with limited privileges due to improper input validation.
CVE-2024-28134High7.02024-05-14 An unauthenticated remote attacker can extract a session token with a MitM attack and gain web-b…