CVE-2025-41699 | Phoenix Contact CHARX SEC-3000 up to 1.7.3 Web-based Management Interface code injection (vde-2025-074)

October 14, 2025 Yanac

A vulnerability was found in Phoenix Contact CHARX SEC-3150, CHARX SEC-3100, CHARX SEC-3050 and CHARX SEC-3000 up to 1.7.3. It has been rated as critical. The impacted element is an unknown function of the component Web-based Management Interface. The manipulation leads to code injection.

This vulnerability is documented as CVE-2025-41699. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More