CRITICAL🇵🇱 Wersja polska

CVE-2024-25995

CVSS 9.8v3.1pub. 2024-03-12upd. 2025-01-30

An unauthenticated remote attacker can modify configurations to perform a remote code execution, gain root rights or perform an DoS due to improper input validation.

🤖 AI Analysis
How it works

The vulnerability results from improper input validation (CWE-20) in the software of CHARX SEC series devices. An attacker without any credentials can send crafted network requests that modify the device configuration. The lack of proper data validation allows injection of malicious instructions that are then executed with elevated system privileges.

Impact

An attacker can gain full control over the device by executing arbitrary code with root privileges, modify its configuration, or completely disable its operation through a DoS attack, which in the EV charging infrastructure environment can have serious operational consequences.

Mitigation & patch

Apply patches available from the manufacturer in accordance with the references. Detailed information about vulnerability-fixing versions is available in the CERT VDE advisory at https://cert.vde.com/en/advisories/VDE-2024-011. Until updates are deployed, it is recommended to isolate devices from public networks and restrict network access using a firewall.

Who is affected

Phoenix Contact CHARX SEC-3000 (firmware), Phoenix Contact CHARX SEC-3050 (firmware), Phoenix Contact CHARX SEC-3100 (firmware) — specific versions indicated in manufacturer references (VDE-2024-011)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Phoenixcontact Charx Sec 3000

    HW
    Phoenixcontact
    wszystkie wersje
  • Phoenixcontact Charx Sec 3000 Firmware

    OS
    Phoenixcontact
    < 1.5.1
  • Phoenixcontact Charx Sec 3050

    HW
    Phoenixcontact
    wszystkie wersje
  • Phoenixcontact Charx Sec 3050 Firmware

    OS
    Phoenixcontact
    < 1.5.1
  • Phoenixcontact Charx Sec 3100

    HW
    Phoenixcontact
    wszystkie wersje
  • Phoenixcontact Charx Sec 3100 Firmware

    OS
    Phoenixcontact
    < 1.5.1
  • Phoenixcontact Charx Sec 3150

    HW
    Phoenixcontact
    wszystkie wersje
  • Phoenixcontact Charx Sec 3150 Firmware

    OS
    Phoenixcontact
    < 1.5.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2025-25270CRITICAL9.8PL ✓ten sam produkt

RCE jako root w sterownikach ładowania Phoenix Contact CHARX SEC-3x00

CVE-2025-24006HIGH7.8ten sam produkt

A low privileged local attacker can leverage insecure permissions via SSH on the affected devices to escalate ...

CVE-2025-24005HIGH7.8ten sam produkt

A local attacker with a local user account can leverage a vulnerable script via SSH to escalate privileges to ...

CVE-2025-24003HIGH8.2ten sam produkt

An unauthenticated remote attacker can use MQTT messages to trigger out-of-bounds writes in charging stations ...

CVE-2025-25268HIGH8.8ten sam produkt

An unauthenticated adjacent attacker can modify configuration by sending specific requests to an API-endpoint ...