Vulnerabilities > Phoenixcontact > Automationworx Software Suite > High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-14	CVE-2023-46143	Download of Code Without Integrity Check vulnerability in Phoenixcontact products Download of Code Without Integrity Check vulnerability in PHOENIX CONTACT classic line PLCs allows an unauthenticated remote attacker to modify some or all applications on a PLC. network low complexity phoenixcontact CWE-494	7.5
2022-11-15	CVE-2022-3461	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Phoenixcontact Automationworx Software Suite 1.89 In PHOENIX CONTACT Automationworx Software Suite up to version 1.89 manipulated PC Worx or Config+ files could lead to a heap buffer overflow and a read access violation. local low complexity phoenixcontact CWE-119	7.8
2022-11-15	CVE-2022-3737	Out-of-bounds Read vulnerability in Phoenixcontact Automationworx Software Suite 1.89 In PHOENIX CONTACT Automationworx Software Suite up to version 1.89 memory can be read beyond the intended scope due to insufficient validation of input data. local low complexity phoenixcontact CWE-125	7.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.