Charx Sec 3000 Firmware
CVE-2024-26003
HIGH
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary rating from Vendor (cert) · only source for this CVE.
CVSS VectorVendor: cert
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Lifecycle Timeline
1DescriptionCVE.org
An unauthenticated remote attacker can DoS the control agent due to a out-of-bounds read which may prevent or disrupt the charging functionality.
AnalysisAI
An unauthenticated remote attacker can DoS the control agent due to a out-of-bounds read which may prevent or disrupt the charging functionality. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified as Out-of-bounds Read (CWE-125), which allows attackers to read data from memory outside the intended buffer boundaries. An unauthenticated remote attacker can DoS the control agent due to a out-of-bounds read which may prevent or disrupt the charging functionality. Affected products include: Phoenixcontact Charx Sec-3000 Firmware, Phoenixcontact Charx Sec-3050 Firmware, Phoenixcontact Charx Sec-3100 Firmware, Phoenixcontact Charx Sec-3150 Firmware.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Validate array indices and buffer lengths. Use memory-safe languages. Enable AddressSanitizer during testing.
More in Charx Sec 3000 Firmware
View allAn unauthenticated remote attacker can alter the device configuration in a way to get remote code execution as root with
A remote unauthenticated attacker can use the firmware update feature on the LAN interface of the device to reset the pa
An unauthenticated remote attacker can write memory out of bounds due to improper input validation in the MQTT stack. Ra
An unauthenticated remote attacker can perform a remote code execution due to an origin validation error. Rated critical
An unauthenticated remote attacker can modify configurations to perform a remote code execution, gain root rights or per
A security vulnerability in An unauthenticated adjacent attacker (CVSS 8.8). High severity vulnerability requiring promp
An unauthenticated adjacent attacker can modify configuration by sending specific requests to an API-endpoint resulting
An unauthenticated remote attacker can influence the communication due to the lack of encryption of sensitive data via a
An unauthenticated local attacker can inject a command that is subsequently executed as root, leading to a privilege esc
An unauthenticated remote attacker can use MQTT messages to trigger out-of-bounds writes in charging stations complying
A local attacker with a local user account can leverage a vulnerable script via SSH to escalate privileges to root due t
A low privileged local attacker can leverage insecure permissions via SSH on the affected devices to escalate privileges
Same weakness CWE-125 – Out-of-bounds Read
View allSame technique Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today