Vulnerabilities > Phoenixcontact > BPC 9102S Firmware > 2024.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-14 | CVE-2023-46142 | Incorrect Permission Assignment for Critical Resource vulnerability in Phoenixcontact products A incorrect permission assignment for critical resource vulnerability in PLCnext products allows an remote attacker with low privileges to gain full access on the affected devices. | 8.8 |
| 2023-12-14 | CVE-2023-46144 | Download of Code Without Integrity Check vulnerability in Phoenixcontact products A download of code without integrity check vulnerability in PLCnext products allows an remote attacker with low privileges to compromise integrity on the affected engineering station and the connected devices. | 6.5 |