CWE-1299

Missing Protection Mechanism for Alternate Hardware Interface

The lack of protections on alternate paths to access control-protected assets (such as unprotected shadow registers and other external facing unguarded interfaces) allows an attacker to bypass existing protections to the asset that are only performed against the primary path.

CVE-2024-47944 (GCVE-0-2024-47944)

Vulnerability from cvelistv5

Published

2024-10-15 09:00

Modified

2025-11-03 22:21

Severity ?

6.8 (Medium) - CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-1299 - Missing Protection Mechanism for Alternate Hardware Interface

Summary

The device directly executes .patch firmware upgrade files on a USB stick without any prior authentication in the admin interface. This leads to an unauthenticated code execution via the firmware upgrade function.

References

URL

	Vendor	Product	Version
	RITTAL GmbH & Co. KG	IoT Interface & CMC III Processing Unit	Version: <6.21.00.2 <

CVE-2025-26409 (GCVE-0-2025-26409)

Vulnerability from cvelistv5

Published

2025-02-11 09:15

Modified

2025-11-03 21:12

Severity ?

6.8 (Medium) - CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-1299 - Missing Protection Mechanism for Alternate Hardware Interface
CWE-1191 - On-Chip Debug and Test Interface With Improper Access Control

Summary

A serial interface can be accessed with physical access to the PCB of Wattsense Bridge devices. After connecting to the interface, access to the bootloader is possible, as well as a Linux login prompt. The bootloader access can be used to gain a root shell on the device. This issue is fixed in recent firmware versions BSP >= 6.4.1.

References

URL

	Vendor	Product	Version
	Wattsense	Wattsense Bridge	Version: 0 < 6.4.1

CVE-2025-41697 (GCVE-0-2025-41697)

Vulnerability from cvelistv5

Published

2025-12-09 08:12

Modified

2025-12-09 14:34

Severity ?

6.8 (Medium) - CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-1299 - Missing Protection Mechanism for Alternate Hardware Interface

Summary

An attacker can use an undocumented UART port on the PCB as a side-channel to get root access e.g. with the credentials obtained from CVE-2025-41692.

References

URL

Tags

https://certvde.com/de/advisories/VDE-2025-071

Impacted products

Vendor

Product

Version

Phoenix Contact

FL SWITCH 2005

Version: 0.0.0 ≤

Phoenix Contact	FL SWITCH 2008	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2016	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2105	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2108	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2116	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2204-2TC-2SFX	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2205	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2206-2FX	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2206-2FX SM	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2206-2FX SM ST	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2206-2FX ST	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2206-2SFX	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2206-2SFX PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2206C-2FX	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2207-FX	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2207-FX SM	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2208	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2208 PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2208C	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2212-2TC-2SFX	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2214-2FX	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2214-2FX SM	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2214-2SFX	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2214-2SFX PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2216	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2216 PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2304-2GC-2SFP	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2306-2SFP	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2306-2SFP PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2308	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2308 PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2312-2GC-2SFP	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2314-2SFP	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2314-2SFP PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2316	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2316 PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2404-2TC-2SFX	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2406-2SFX	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2406-2SFX PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2408	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2408 PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2412-2TC-2SFX	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2414-2SFX	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2414-2SFX PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2416	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2416 PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2504-2GC-2SFP	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2506-2SFP	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2506-2SFP PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2508	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2508 PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2512-2GC-2SFP	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2514-2SFP	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2514-2SFP PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2516	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2516 PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2608	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2608 PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2708	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2708 PN	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2303-8SP1	Version: 0.0.0 ≤
Phoenix Contact	FL NAT 2008	Version: 0.0.0 ≤
Phoenix Contact	FL NAT 2208	Version: 0.0.0 ≤
Phoenix Contact	FL NAT 2304-2GC-2SFP	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2008F	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2316/K1	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2506-2SFP/K1	Version: 0.0.0 ≤
Phoenix Contact	FL SWITCH 2508/K1	Version: 0.0.0 ≤

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-41697",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-12-09T14:34:33.219161Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-12-09T14:34:39.435Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2005",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2008",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2016",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2105",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2108",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2116",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2204-2TC-2SFX",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2205",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2206-2FX",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2206-2FX SM",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2206-2FX SM ST",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2206-2FX ST",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2206-2SFX",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2206-2SFX PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2206C-2FX",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2207-FX",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2207-FX SM",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2208",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2208 PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2208C",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2212-2TC-2SFX",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2214-2FX",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2214-2FX SM",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2214-2SFX",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2214-2SFX PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2216",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2216 PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2304-2GC-2SFP",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2306-2SFP",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2306-2SFP PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2308",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2308 PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2312-2GC-2SFP",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2314-2SFP",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2314-2SFP PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2316",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2316 PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2404-2TC-2SFX",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2406-2SFX",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2406-2SFX PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2408",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2408 PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2412-2TC-2SFX",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2414-2SFX",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2414-2SFX PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2416",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2416 PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2504-2GC-2SFP",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2506-2SFP",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2506-2SFP PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2508",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2508 PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2512-2GC-2SFP",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2514-2SFP",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2514-2SFP PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2516",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2516 PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2608",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2608 PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2708",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2708 PN",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2303-8SP1",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL NAT 2008",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL NAT 2208",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL NAT 2304-2GC-2SFP",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2008F",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2316/K1",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2506-2SFP/K1",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL SWITCH 2508/K1",
          "vendor": "Phoenix Contact",
          "versions": [
            {
              "lessThan": "3.50",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "D. Blagojevic, S. Dietz, F. Koroknai, T. Weber from CyberDanube"
        }
      ],
      "datePublic": "2025-12-09T08:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "An attacker can use an undocumented UART port on the PCB as a side-channel    to get root access e.g. with the credentials obtained from CVE-2025-41692.\u003cbr\u003e"
            }
          ],
          "value": "An attacker can use an undocumented UART port on the PCB as a side-channel    to get root access e.g. with the credentials obtained from CVE-2025-41692."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "PHYSICAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-1299",
              "description": "CWE-1299 Missing Protection Mechanism for Alternate Hardware Interface",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-12-09T08:12:16.507Z",
        "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "shortName": "CERTVDE"
      },
      "references": [
        {
          "url": "https://certvde.com/de/advisories/VDE-2025-071"
        }
      ],
      "source": {
        "advisory": "VDE-2025-071",
        "defect": [
          "CERT@VDE#641831"
        ],
        "discovery": "UNKNOWN"
      },
      "title": "Shell access to UART Console",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
    "assignerShortName": "CERTVDE",
    "cveId": "CVE-2025-41697",
    "datePublished": "2025-12-09T08:12:16.507Z",
    "dateReserved": "2025-04-16T11:17:48.310Z",
    "dateUpdated": "2025-12-09T14:34:39.435Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Mitigation

Phase: Requirements

Description:

Protect assets from accesses against all potential interfaces and alternate paths.

Mitigation

Phase: Architecture and Design

Description:

Protect assets from accesses against all potential interfaces and alternate paths.

Mitigation

Phase: Implementation

Description:

Protect assets from accesses against all potential interfaces and alternate paths.

CAPEC-457: USB Memory Attacks

An adversary loads malicious code onto a USB memory stick in order to infect any system which the device is plugged in to. USB drives present a significant security risk for business and government agencies. Given the ability to integrate wireless functionality into a USB stick, it is possible to design malware that not only steals confidential data, but sniffs the network, or monitor keystrokes, and then exfiltrates the stolen data off-site via a Wireless connection. Also, viruses can be transmitted via the USB interface without the specific use of a memory stick. The attacks from USB devices are often of such sophistication that experts conclude they are not the work of single individuals, but suggest state sponsorship. These attacks can be performed by an adversary with direct access to a target system or can be executed via means such as USB Drop Attacks.

CAPEC-554: Functionality Bypass

An adversary attacks a system by bypassing some or all functionality intended to protect it. Often, a system user will think that protection is in place, but the functionality behind those protections has been disabled by the adversary.

Back to CWE stats page