CVE-2025-24005
EUVD-2025-2040608.07.2025, 07:15
A local attacker with a local user account can leverage a vulnerable script via SSH to escalate privileges to root due to improper input validation.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| phoenixcontact | charx_sec-3000_firmware | 𝑥 < 1.7.3 |
| phoenixcontact | charx_sec-3050_firmware | 𝑥 < 1.7.3 |
| phoenixcontact | charx_sec-3100_firmware | 𝑥 < 1.7.3 |
| phoenixcontact | charx_sec-3150_firmware | 𝑥 < 1.7.3 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration