CVE-2023-3573— PHOENIX CONTACT: Command Injection in WP 6xxx Web panels
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2023-3573
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
PHOENIX CONTACT: Command Injection in WP 6xxx Web panels
Source: NVD (National Vulnerability Database)
Vulnerability Description
In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with low privileges may use a command injection in a HTTP POST request releated to font configuration operations to gain full access to the device.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Source: NVD (National Vulnerability Database)
Vulnerability Title
PHOENIX CONTACTs WP 6xxx series web panels 操作系统命令注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
PHOENIX CONTACTs WP 6xxx series web panels是德国菲尼克斯电气(PHOENIX CONTACTs)公司的一系列网页面板。 PHOENIX CONTACTs WP 6xxx series web panels 4.0.10之前版本存在操作系统命令注入漏洞,该漏洞源于低权限的远程攻击者可能会在与字体配置操作相关的HTTP POST请求中使用命令注入,以获得对设备的完全访问权限。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| PHOENIX CONTACT | WP 6070-WVPS | 0 ~ 4.0.10 | - | |
| PHOENIX CONTACT | WP 6101-WXPS | 0 ~ 4.0.10 | - | |
| PHOENIX CONTACT | WP 6121-WXPS | 0 ~ 4.0.10 | - | |
| PHOENIX CONTACT | WP 6156-WHPS | 0 ~ 4.0.10 | - | |
| PHOENIX CONTACT | WP 6185-WHPS | 0 ~ 4.0.10 | - | |
| PHOENIX CONTACT | WP 6215-WHPS | 0 ~ 4.0.10 | - |
II. Public POCs for CVE-2023-3573
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2023-3573
请登录查看更多情报信息。
Same Patch Batch · PHOENIX CONTACT · 2023-08-08 · 6 CVEs total
| CVE-2023-3572 | 10.0 CRITICAL | PHOENIX CONTACT: OS Command Injection in WP 6xxx Web panels |
| CVE-2023-3526 | 9.6 CRITICAL | PHOENIX CONTACT: Cross-site Scripting vulnerability in TC ROUTER, TC CLOUD CLIENT and CLOU |
| CVE-2023-3571 | 8.8 HIGH | PHOENIX CONTACT: OS Command Injection in WP 6xxx Web panels |
| CVE-2023-3570 | 8.8 HIGH | PHOENIX CONTACT: OS Command Injection in WP 6xxx Web panels |
| CVE-2023-3569 | 4.9 MEDIUM | PHOENIX CONTACT: Denial-of-Service due to malicious XML files in TC ROUTER, TC CLOUD CLIEN |
IV. Related Vulnerabilities
Same product: WP 6070-WVPS
- CVE-2023-37858
PHOENIX CONTACT: Use of Hard-coded Credentials in WP 6xxx We - CVE-2023-37857
PHOENIX CONTACT: Use of Hard-coded Credentials in WP 6xxx We - CVE-2023-37855
PHOENIX CONTACT: Unauthorized read-access of root filesystem - CVE-2023-37856
PHOENIX CONTACT: Unauthorized read-access of root filesystem - CVE-2023-37863
PHOENIX CONTACT: OS Command Injection in WP 6xxx Web panels
Same vendor: PHOENIX CONTACT
- CVE-2024-43384
Phoenix Contact: Improper removal of sensitive information i - CVE-2026-22323
Cross‑Site Request Forgery in Link Aggregation Configuration - CVE-2026-22322
Stored Cross‑Site Scripting in Link Aggregation Name Handlin - CVE-2026-22321
Stack-Based Buffer Overflow in CLI Login Username Handling o - CVE-2026-22320
Stack-Based Buffer Overflow in TFTP File-Transfer Command Ha
Same weakness: CWE-78
- CVE-2026-8273
D-Link DNS-320 system_mgr.cgi cgi_merge_user os command inje - CVE-2026-8272
D-Link DNS-320 webfile_mgr.cgi chown os command injection - CVE-2026-8271
D-Link DNS-320 network_mgr.cgi cgi_upnp_edit os command inje - CVE-2026-8265
Tenda AC6 httpd getLogFile get_log_file os command injection - CVE-2026-8264
Tenda AC6 httpd WifiApScan formWifiApScan os command injecti
V. Comments for CVE-2023-3573
No comments yet