A remote unauthenticated attacker can use the firmware update feature on the LAN interface of the device to reset the password for the predefined, low-privileged user “user-app” to the default password.
The product uses default credentials (such as passwords or cryptographic keys) for potentially critical functionality.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Charx_sec-3000_firmware | Phoenixcontact | * | 1.6.3 (excluding) |