CWE-121
Stack-based Buffer Overflow
A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
CVE-2026-22213 (GCVE-0-2026-22213)
Vulnerability from cvelistv5 – Published: 2026-01-12 23:03 – Updated: 2026-05-14 02:09
VLAI
Title
RIOT OS <= 2026.01-devel-317 Stack-Based Buffer Overflow in tapslip6 Utility
Summary
RIOT OS versions up to and including 2026.01-devel-317 contain a stack-based buffer overflow vulnerability in the tapslip6 utility. The vulnerability is caused by unsafe string concatenation in the devopen() function, which constructs a device path using unbounded user-controlled input. The utility uses strcpy() and strcat() to concatenate the fixed prefix '/dev/' with a user-supplied device name provided via the -s command-line option without bounds checking. This allows an attacker to supply an excessively long device name and overflow a fixed-size stack buffer, leading to process crashes and memory corruption.
Severity
SSVC
Exploitation: poc
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://seclists.org/fulldisclosure/2026/Jan/15 | technical-descriptionexploit |
| https://www.riot-os.org/ | product |
| https://github.com/RIOT-OS/RIOT | product |
| https://www.vulncheck.com/advisories/riot-os-stac… | third-party-advisory |
Impacted products
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-22213",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-01-13T18:37:33.649371Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-01-13T18:37:41.785Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unknown",
"product": "RIOT OS",
"repo": "https://github.com/RIOT-OS/RIOT",
"vendor": "RIOT",
"versions": [
{
"lessThanOrEqual": "2026.01-devel-317",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Ron Edgerson"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "RIOT OS versions up to and including 2026.01-devel-317 contain a stack-based buffer overflow vulnerability in the tapslip6 utility. The vulnerability is caused by unsafe string concatenation in the devopen() function, which constructs a device path using unbounded user-controlled input. The utility uses strcpy() and strcat() to concatenate the fixed prefix \u0027/dev/\u0027 with a user-supplied device name provided via the -s command-line option without bounds checking. This allows an attacker to supply an excessively long device name and overflow a fixed-size stack buffer, leading to process crashes and memory corruption."
}
],
"value": "RIOT OS versions up to and including 2026.01-devel-317 contain a stack-based buffer overflow vulnerability in the tapslip6 utility. The vulnerability is caused by unsafe string concatenation in the devopen() function, which constructs a device path using unbounded user-controlled input. The utility uses strcpy() and strcat() to concatenate the fixed prefix \u0027/dev/\u0027 with a user-supplied device name provided via the -s command-line option without bounds checking. This allows an attacker to supply an excessively long device name and overflow a fixed-size stack buffer, leading to process crashes and memory corruption."
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "LOCAL",
"baseScore": 2.4,
"baseSeverity": "LOW",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "LOW",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "ACTIVE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "LOW",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "CWE-121 Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-05-14T02:09:05.985Z",
"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
"shortName": "VulnCheck"
},
"references": [
{
"tags": [
"technical-description",
"exploit"
],
"url": "https://seclists.org/fulldisclosure/2026/Jan/15"
},
{
"tags": [
"product"
],
"url": "https://www.riot-os.org/"
},
{
"tags": [
"product"
],
"url": "https://github.com/RIOT-OS/RIOT"
},
{
"tags": [
"third-party-advisory"
],
"url": "https://www.vulncheck.com/advisories/riot-os-stack-based-buffer-overflow-in-tapslip6-utility"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "RIOT OS \u003c= 2026.01-devel-317 Stack-Based Buffer Overflow in tapslip6 Utility",
"x_generator": {
"engine": "Vulnogram 0.5.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
"assignerShortName": "VulnCheck",
"cveId": "CVE-2026-22213",
"datePublished": "2026-01-12T23:03:05.461Z",
"dateReserved": "2026-01-06T16:47:17.187Z",
"dateUpdated": "2026-05-14T02:09:05.985Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-22214 (GCVE-0-2026-22214)
Vulnerability from cvelistv5 – Published: 2026-01-12 23:03 – Updated: 2026-05-14 02:09
VLAI
Title
RIOT OS <= 2026.01-devel-317 Stack-Based Buffer Overflow in ethos Serial Frame Parser
Summary
RIOT OS versions up to and including 2026.01-devel-317 contain a stack-based buffer overflow vulnerability in the ethos utility due to missing bounds checking when processing incoming serial frame data. The vulnerability occurs in the _handle_char() function, where incoming frame bytes are appended to a fixed-size stack buffer without verifying that the current write index remains within bounds. An attacker capable of sending crafted serial or TCP-framed input can cause the current write index to exceed the buffer size, resulting in a write past the end of the stack buffer. This condition leads to memory corruption and application crash.
Severity
SSVC
Exploitation: poc
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://seclists.org/fulldisclosure/2026/Jan/16 | technical-descriptionexploit |
| https://www.riot-os.org/ | product |
| https://github.com/RIOT-OS/RIOT | product |
| https://www.vulncheck.com/advisories/riot-os-stac… | third-party-advisory |
Impacted products
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-22214",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-01-13T18:50:33.856751Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-01-13T18:50:40.171Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unknown",
"product": "RIOT OS",
"repo": "https://github.com/RIOT-OS/RIOT",
"vendor": "RIOT",
"versions": [
{
"lessThanOrEqual": "2026.01-devel-317",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Ron Edgerson"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "RIOT OS versions up to and including 2026.01-devel-317 contain a stack-based buffer overflow vulnerability in the ethos utility due to missing bounds checking when processing incoming serial frame data. The vulnerability occurs in the _handle_char() function, where incoming frame bytes are appended to a fixed-size stack buffer without verifying that the current write index remains within bounds. An attacker capable of sending crafted serial or TCP-framed input can cause the current write index to exceed the buffer size, resulting in a write past the end of the stack buffer. This condition leads to memory corruption and application crash."
}
],
"value": "RIOT OS versions up to and including 2026.01-devel-317 contain a stack-based buffer overflow vulnerability in the ethos utility due to missing bounds checking when processing incoming serial frame data. The vulnerability occurs in the _handle_char() function, where incoming frame bytes are appended to a fixed-size stack buffer without verifying that the current write index remains within bounds. An attacker capable of sending crafted serial or TCP-framed input can cause the current write index to exceed the buffer size, resulting in a write past the end of the stack buffer. This condition leads to memory corruption and application crash."
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "LOW",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "ACTIVE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "CWE-121 Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-05-14T02:09:06.739Z",
"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
"shortName": "VulnCheck"
},
"references": [
{
"tags": [
"technical-description",
"exploit"
],
"url": "https://seclists.org/fulldisclosure/2026/Jan/16"
},
{
"tags": [
"product"
],
"url": "https://www.riot-os.org/"
},
{
"tags": [
"product"
],
"url": "https://github.com/RIOT-OS/RIOT"
},
{
"tags": [
"third-party-advisory"
],
"url": "https://www.vulncheck.com/advisories/riot-os-stack-based-buffer-overflow-in-ethos-serial-frame-parser"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "RIOT OS \u003c= 2026.01-devel-317 Stack-Based Buffer Overflow in ethos Serial Frame Parser",
"x_generator": {
"engine": "Vulnogram 0.5.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
"assignerShortName": "VulnCheck",
"cveId": "CVE-2026-22214",
"datePublished": "2026-01-12T23:03:23.393Z",
"dateReserved": "2026-01-06T16:47:17.187Z",
"dateUpdated": "2026-05-14T02:09:06.739Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-22262 (GCVE-0-2026-22262)
Vulnerability from cvelistv5 – Published: 2026-01-27 18:18 – Updated: 2026-01-27 19:30
VLAI
Title
Suricata datasets: stack overflow when saving a set
Summary
Suricata is a network IDS, IPS and NSM engine. While saving a dataset a stack buffer is used to prepare the data. Prior to versions 8.0.3 and 7.0.14, if the data in the dataset is too large, this can result in a stack overflow. Versions 8.0.3 and 7.0.14 contain a patch. As a workaround, do not use rules with datasets `save` nor `state` options.
Severity
5.9 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
8 references
| URL | Tags |
|---|---|
| https://github.com/OISF/suricata/security/advisor… | x_refsource_CONFIRM |
| https://github.com/OISF/suricata/commit/0eff24213… | x_refsource_MISC |
| https://github.com/OISF/suricata/commit/27a2180bc… | x_refsource_MISC |
| https://github.com/OISF/suricata/commit/32609e689… | x_refsource_MISC |
| https://github.com/OISF/suricata/commit/32a1b9ae6… | x_refsource_MISC |
| https://github.com/OISF/suricata/commit/d6bc718e3… | x_refsource_MISC |
| https://github.com/OISF/suricata/commit/d767dfadc… | x_refsource_MISC |
| https://redmine.openinfosecfoundation.org/issues/8110 | x_refsource_MISC |
Impacted products
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-22262",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-01-27T19:29:40.963947Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-01-27T19:30:42.782Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "suricata",
"vendor": "OISF",
"versions": [
{
"status": "affected",
"version": "\u003c 7.0.14"
},
{
"status": "affected",
"version": "\u003e= 8.0.0, \u003c 8.0.3"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Suricata is a network IDS, IPS and NSM engine. While saving a dataset a stack buffer is used to prepare the data. Prior to versions 8.0.3 and 7.0.14, if the data in the dataset is too large, this can result in a stack overflow. Versions 8.0.3 and 7.0.14 contain a patch. As a workaround, do not use rules with datasets `save` nor `state` options."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "CWE-121: Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-01-27T18:18:52.922Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/OISF/suricata/security/advisories/GHSA-9qg5-2gwh-xp86",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/OISF/suricata/security/advisories/GHSA-9qg5-2gwh-xp86"
},
{
"name": "https://github.com/OISF/suricata/commit/0eff24213763c2aa2bb0957901d5dc1e18414dbf",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/OISF/suricata/commit/0eff24213763c2aa2bb0957901d5dc1e18414dbf"
},
{
"name": "https://github.com/OISF/suricata/commit/27a2180bceaa3477419c78c54fce364398d011f1",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/OISF/suricata/commit/27a2180bceaa3477419c78c54fce364398d011f1"
},
{
"name": "https://github.com/OISF/suricata/commit/32609e6896f9079c175665a94005417cec7637eb",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/OISF/suricata/commit/32609e6896f9079c175665a94005417cec7637eb"
},
{
"name": "https://github.com/OISF/suricata/commit/32a1b9ae6aa80a60c073897e38a2ac6ea0f64521",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/OISF/suricata/commit/32a1b9ae6aa80a60c073897e38a2ac6ea0f64521"
},
{
"name": "https://github.com/OISF/suricata/commit/d6bc718e303ecbec5999066b8bc88eeeca743658",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/OISF/suricata/commit/d6bc718e303ecbec5999066b8bc88eeeca743658"
},
{
"name": "https://github.com/OISF/suricata/commit/d767dfadcd166f82683757818b9e46943326ac90",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/OISF/suricata/commit/d767dfadcd166f82683757818b9e46943326ac90"
},
{
"name": "https://redmine.openinfosecfoundation.org/issues/8110",
"tags": [
"x_refsource_MISC"
],
"url": "https://redmine.openinfosecfoundation.org/issues/8110"
}
],
"source": {
"advisory": "GHSA-9qg5-2gwh-xp86",
"discovery": "UNKNOWN"
},
"title": "Suricata datasets: stack overflow when saving a set"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-22262",
"datePublished": "2026-01-27T18:18:52.922Z",
"dateReserved": "2026-01-07T05:19:12.923Z",
"dateUpdated": "2026-01-27T19:30:42.782Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-22316 (GCVE-0-2026-22316)
Vulnerability from cvelistv5 – Published: 2026-03-18 07:33 – Updated: 2026-03-18 15:08
VLAI
Title
Buffer Overflow using TFTP Filename
Summary
A remote attacker with user privileges for the webUI can use the setting of the TFTP Filename with a POST Request to trigger a stack-based Buffer Overflow, resulting in a DoS attack.
Severity
6.5 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
1 reference
Impacted products
77 products
| Vendor | Product | Version | |
|---|---|---|---|
| Phoenix Contact | FL SWITCH 2005 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2008 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2016 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2105 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2108 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2116 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2204-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2205 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX SM |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX SM ST |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX ST |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206C-2FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2207-FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2207-FX SM |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2208 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2208 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2208C |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2212-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2FX SM |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2216 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2216 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2304-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2306-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2306-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2308 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2308 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2312-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2314-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2314-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2316 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2316 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2404-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2406-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2406-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2408 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2408 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2412-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2414-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2414-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2416 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2416 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2504-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2506-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2506-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2508 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2508 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2512-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2514-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2514-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2516 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2516 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2608 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2608 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2708 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2708 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2303-8SP1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL NAT 2008 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL NAT 2208 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL NAT 2304-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2008F |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2316/K1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2506-2SFP/K1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2508/K1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH TSN 2316 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH TSN 2312-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH TSN 2314-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5924-4GC |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5916-8GC-4SFP+ |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5924SFP-4GC |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5924-4SFP+ |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5916SFP-8GC-4SFP+ |
Affected:
0.0.0 , < 3.53
(semver)
|
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-22316",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-03-18T15:07:52.390399Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-03-18T15:08:43.181Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2005",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2008",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2016",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2105",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2108",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2116",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2204-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2205",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX SM ST",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX ST",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206C-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2207-FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2207-FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208C",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2212-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2216",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2216 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2304-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2306-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2306-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2308",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2308 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2312-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2314-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2314-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2404-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2406-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2406-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2408",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2408 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2412-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2414-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2414-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2416",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2416 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2504-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2512-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2514-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2514-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2516",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2516 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2608",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2608 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2708",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2708 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2303-8SP1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2008",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2208",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2304-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2008F",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2316",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2312-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2314-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924-4GC",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5916-8GC-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924SFP-4GC",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5916SFP-8GC-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"user": "00000000-0000-4000-9000-000000000000",
"value": "Gabriele Quagliarella from Nozomi Networks"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "A remote attacker with user privileges for the webUI can use the setting of the TFTP Filename with a POST Request to trigger a stack-based Buffer Overflow, resulting in a DoS attack.\u003cbr\u003e"
}
],
"value": "A remote attacker with user privileges for the webUI can use the setting of the TFTP Filename with a POST Request to trigger a stack-based Buffer Overflow, resulting in a DoS attack."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "CWE-121 Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-18T07:33:31.584Z",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"url": "https://certvde.com/de/advisories/VDE-2025-104"
}
],
"source": {
"advisory": "VDE-2025-104",
"defect": [
"CERT@VDE#641898"
],
"discovery": "UNKNOWN"
},
"title": "Buffer Overflow using TFTP Filename",
"x_generator": {
"engine": "Vulnogram 0.1.0-dev"
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2026-22316",
"datePublished": "2026-03-18T07:33:31.584Z",
"dateReserved": "2026-01-07T11:49:15.177Z",
"dateUpdated": "2026-03-18T15:08:43.181Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-22318 (GCVE-0-2026-22318)
Vulnerability from cvelistv5 – Published: 2026-03-18 07:33 – Updated: 2026-03-18 13:57
VLAI
Title
Stack-Based Buffer Overflow in File Transfer Parameter Handling
Summary
A stack-based buffer overflow vulnerability in the device's file transfer parameter workflow allows a high-privileged attacker to send oversized POST parameters, causing memory corruption in an internal process, resulting in a DoS attack.
Severity
4.9 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
1 reference
Impacted products
77 products
| Vendor | Product | Version | |
|---|---|---|---|
| Phoenix Contact | FL SWITCH 2005 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2008 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2016 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2105 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2108 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2116 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2204-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2205 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX SM |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX SM ST |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX ST |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206C-2FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2207-FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2207-FX SM |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2208 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2208 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2208C |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2212-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2FX SM |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2216 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2216 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2304-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2306-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2306-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2308 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2308 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2312-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2314-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2314-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2316 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2316 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2404-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2406-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2406-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2408 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2408 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2412-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2414-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2414-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2416 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2416 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2504-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2506-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2506-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2508 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2508 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2512-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2514-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2514-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2516 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2516 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2608 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2608 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2708 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2708 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2303-8SP1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL NAT 2008 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL NAT 2208 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL NAT 2304-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2008F |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2316/K1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2506-2SFP/K1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2508/K1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH TSN 2316 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH TSN 2312-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH TSN 2314-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5924-4GC |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5916-8GC-4SFP+ |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5924SFP-4GC |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5924-4SFP+ |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5916SFP-8GC-4SFP+ |
Affected:
0.0.0 , < 3.53
(semver)
|
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-22318",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-03-18T13:40:21.762727Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-03-18T13:57:31.902Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2005",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2008",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2016",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2105",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2108",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2116",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2204-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2205",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX SM ST",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX ST",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206C-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2207-FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2207-FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208C",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2212-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2216",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2216 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2304-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2306-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2306-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2308",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2308 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2312-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2314-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2314-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2404-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2406-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2406-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2408",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2408 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2412-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2414-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2414-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2416",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2416 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2504-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2512-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2514-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2514-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2516",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2516 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2608",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2608 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2708",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2708 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2303-8SP1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2008",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2208",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2304-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2008F",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2316",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2312-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2314-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924-4GC",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5916-8GC-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924SFP-4GC",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5916SFP-8GC-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"user": "00000000-0000-4000-9000-000000000000",
"value": "Gabriele Quagliarella from Nozomi Networks"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "A stack-based buffer overflow vulnerability in the device\u0027s file transfer parameter workflow allows a high-privileged attacker to send oversized POST parameters, causing memory corruption in an internal process, resulting in a DoS attack.\u003cbr\u003e"
}
],
"value": "A stack-based buffer overflow vulnerability in the device\u0027s file transfer parameter workflow allows a high-privileged attacker to send oversized POST parameters, causing memory corruption in an internal process, resulting in a DoS attack."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "CWE-121 Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-18T07:33:55.612Z",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"url": "https://certvde.com/de/advisories/VDE-2025-104"
}
],
"source": {
"advisory": "VDE-2025-104",
"defect": [
"CERT@VDE#641898"
],
"discovery": "UNKNOWN"
},
"title": "Stack-Based Buffer Overflow in File Transfer Parameter Handling",
"x_generator": {
"engine": "Vulnogram 0.1.0-dev"
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2026-22318",
"datePublished": "2026-03-18T07:33:55.612Z",
"dateReserved": "2026-01-07T11:49:15.178Z",
"dateUpdated": "2026-03-18T13:57:31.902Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-22319 (GCVE-0-2026-22319)
Vulnerability from cvelistv5 – Published: 2026-03-18 07:34 – Updated: 2026-03-18 13:39
VLAI
Title
Stack-Based Buffer Overflow in File Install Parameter Handling
Summary
A stack-based buffer overflow in the device's file installation workflow allows a high-privileged attacker to send oversized POST parameters that overflow a fixed-size stack buffer within an internal process, resulting in a DoS attack.
Severity
4.9 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
1 reference
Impacted products
77 products
| Vendor | Product | Version | |
|---|---|---|---|
| Phoenix Contact | FL SWITCH 2005 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2008 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2016 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2105 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2108 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2116 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2204-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2205 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX SM |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX SM ST |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX ST |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206C-2FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2207-FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2207-FX SM |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2208 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2208 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2208C |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2212-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2FX SM |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2216 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2216 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2304-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2306-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2306-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2308 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2308 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2312-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2314-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2314-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2316 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2316 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2404-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2406-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2406-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2408 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2408 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2412-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2414-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2414-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2416 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2416 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2504-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2506-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2506-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2508 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2508 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2512-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2514-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2514-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2516 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2516 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2608 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2608 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2708 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2708 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2303-8SP1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL NAT 2008 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL NAT 2208 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL NAT 2304-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2008F |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2316/K1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2506-2SFP/K1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2508/K1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH TSN 2316 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH TSN 2312-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH TSN 2314-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5924-4GC |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5916-8GC-4SFP+ |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5924SFP-4GC |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5924-4SFP+ |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5916SFP-8GC-4SFP+ |
Affected:
0.0.0 , < 3.53
(semver)
|
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-22319",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-03-18T13:34:43.330197Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-03-18T13:39:18.119Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2005",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2008",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2016",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2105",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2108",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2116",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2204-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2205",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX SM ST",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX ST",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206C-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2207-FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2207-FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208C",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2212-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2216",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2216 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2304-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2306-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2306-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2308",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2308 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2312-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2314-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2314-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2404-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2406-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2406-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2408",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2408 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2412-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2414-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2414-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2416",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2416 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2504-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2512-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2514-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2514-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2516",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2516 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2608",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2608 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2708",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2708 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2303-8SP1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2008",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2208",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2304-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2008F",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2316",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2312-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2314-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924-4GC",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5916-8GC-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924SFP-4GC",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5916SFP-8GC-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"user": "00000000-0000-4000-9000-000000000000",
"value": "Gabriele Quagliarella from Nozomi Networks"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "A stack-based buffer overflow in the device\u0027s file installation workflow allows a high-privileged attacker to send oversized POST parameters that overflow a fixed-size stack buffer within an internal process, resulting in a DoS attack.\u003cbr\u003e"
}
],
"value": "A stack-based buffer overflow in the device\u0027s file installation workflow allows a high-privileged attacker to send oversized POST parameters that overflow a fixed-size stack buffer within an internal process, resulting in a DoS attack."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "CWE-121 Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-18T07:34:07.998Z",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"url": "https://certvde.com/de/advisories/VDE-2025-104"
}
],
"source": {
"advisory": "VDE-2025-104",
"defect": [
"CERT@VDE#641898"
],
"discovery": "UNKNOWN"
},
"title": "Stack-Based Buffer Overflow in File Install Parameter Handling",
"x_generator": {
"engine": "Vulnogram 0.1.0-dev"
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2026-22319",
"datePublished": "2026-03-18T07:34:07.998Z",
"dateReserved": "2026-01-07T11:49:15.178Z",
"dateUpdated": "2026-03-18T13:39:18.119Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-22320 (GCVE-0-2026-22320)
Vulnerability from cvelistv5 – Published: 2026-03-18 07:34 – Updated: 2026-03-18 13:33
VLAI
Title
Stack-Based Buffer Overflow in TFTP File-Transfer Command Handling over CLI
Summary
A stack-based buffer overflow in the CLI's TFTP file‑transfer command handling allows a low-privileged attacker with Telnet/SSH access to trigger memory corruption by supplying unexpected or oversized filename input. Exploitation results in the corruption of the internal buffer, causing the CLI and web dashboard to become unavailable and leading to a denial of service.
Severity
6.5 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
1 reference
Impacted products
77 products
| Vendor | Product | Version | |
|---|---|---|---|
| Phoenix Contact | FL SWITCH 2005 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2008 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2016 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2105 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2108 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2116 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2204-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2205 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX SM |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX SM ST |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX ST |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206C-2FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2207-FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2207-FX SM |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2208 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2208 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2208C |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2212-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2FX SM |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2216 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2216 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2304-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2306-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2306-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2308 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2308 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2312-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2314-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2314-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2316 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2316 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2404-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2406-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2406-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2408 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2408 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2412-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2414-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2414-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2416 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2416 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2504-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2506-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2506-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2508 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2508 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2512-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2514-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2514-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2516 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2516 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2608 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2608 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2708 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2708 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2303-8SP1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL NAT 2008 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL NAT 2208 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL NAT 2304-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2008F |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2316/K1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2506-2SFP/K1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2508/K1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH TSN 2316 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH TSN 2312-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH TSN 2314-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5924-4GC |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5916-8GC-4SFP+ |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5924SFP-4GC |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5924-4SFP+ |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5916SFP-8GC-4SFP+ |
Affected:
0.0.0 , < 3.53
(semver)
|
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-22320",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-03-18T13:33:19.219623Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-03-18T13:33:41.112Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2005",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2008",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2016",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2105",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2108",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2116",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2204-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2205",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX SM ST",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX ST",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206C-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2207-FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2207-FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208C",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2212-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2216",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2216 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2304-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2306-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2306-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2308",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2308 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2312-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2314-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2314-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2404-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2406-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2406-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2408",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2408 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2412-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2414-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2414-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2416",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2416 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2504-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2512-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2514-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2514-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2516",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2516 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2608",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2608 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2708",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2708 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2303-8SP1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2008",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2208",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2304-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2008F",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2316",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2312-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2314-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924-4GC",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5916-8GC-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924SFP-4GC",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5916SFP-8GC-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"user": "00000000-0000-4000-9000-000000000000",
"value": "Gabriele Quagliarella from Nozomi Networks"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "A stack-based buffer overflow in the CLI\u0027s TFTP file\u2011transfer command handling allows a low-privileged attacker with Telnet/SSH access to trigger memory corruption by supplying unexpected or oversized filename input. Exploitation results in the corruption of the internal buffer, causing the CLI and web dashboard to become unavailable and leading to a denial of service.\u003cbr\u003e"
}
],
"value": "A stack-based buffer overflow in the CLI\u0027s TFTP file\u2011transfer command handling allows a low-privileged attacker with Telnet/SSH access to trigger memory corruption by supplying unexpected or oversized filename input. Exploitation results in the corruption of the internal buffer, causing the CLI and web dashboard to become unavailable and leading to a denial of service."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "CWE-121 Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-18T07:34:23.026Z",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"url": "https://certvde.com/de/advisories/VDE-2025-104"
}
],
"source": {
"advisory": "VDE-2025-104",
"defect": [
"CERT@VDE#641898"
],
"discovery": "UNKNOWN"
},
"title": "Stack-Based Buffer Overflow in TFTP File-Transfer Command Handling over CLI",
"x_generator": {
"engine": "Vulnogram 0.1.0-dev"
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2026-22320",
"datePublished": "2026-03-18T07:34:23.026Z",
"dateReserved": "2026-01-07T11:49:15.178Z",
"dateUpdated": "2026-03-18T13:33:41.112Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-22321 (GCVE-0-2026-22321)
Vulnerability from cvelistv5 – Published: 2026-03-18 07:34 – Updated: 2026-03-18 13:32
VLAI
Title
Stack-Based Buffer Overflow in CLI Login Username Handling over CLI
Summary
A stack-based buffer overflow in the device's Telnet/SSH CLI login routine occurs when a unauthenticated attacker send an oversized or unexpected username input. An overflow condition crashes the thread handling the login attempt, forcing the session to close. Because other CLI sessions remain unaffected, the impact is limited to a low‑severity availability disruption.
Severity
5.3 (Medium)
SSVC
Exploitation: none
Automatable: yes
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
1 reference
Impacted products
77 products
| Vendor | Product | Version | |
|---|---|---|---|
| Phoenix Contact | FL SWITCH 2005 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2008 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2016 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2105 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2108 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2116 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2204-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2205 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX SM |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX SM ST |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2FX ST |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2206C-2FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2207-FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2207-FX SM |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2208 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2208 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2208C |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2212-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2FX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2FX SM |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2214-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2216 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2216 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2304-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2306-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2306-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2308 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2308 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2312-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2314-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2314-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2316 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2316 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2404-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2406-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2406-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2408 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2408 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2412-2TC-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2414-2SFX |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2414-2SFX PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2416 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2416 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2504-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2506-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2506-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2508 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2508 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2512-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2514-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2514-2SFP PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2516 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2516 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2608 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2608 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2708 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2708 PN |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2303-8SP1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL NAT 2008 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL NAT 2208 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL NAT 2304-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2008F |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2316/K1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2506-2SFP/K1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 2508/K1 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH TSN 2316 |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH TSN 2312-2GC-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH TSN 2314-2SFP |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5924-4GC |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5916-8GC-4SFP+ |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5924SFP-4GC |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5924-4SFP+ |
Affected:
0.0.0 , < 3.53
(semver)
|
|
| Phoenix Contact | FL SWITCH 5916SFP-8GC-4SFP+ |
Affected:
0.0.0 , < 3.53
(semver)
|
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-22321",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-03-18T13:32:15.348977Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-03-18T13:32:24.892Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2005",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2008",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2016",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2105",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2108",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2116",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2204-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2205",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX SM ST",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX ST",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206C-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2207-FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2207-FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208C",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2212-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2216",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2216 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2304-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2306-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2306-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2308",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2308 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2312-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2314-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2314-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2404-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2406-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2406-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2408",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2408 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2412-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2414-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2414-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2416",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2416 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2504-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2512-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2514-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2514-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2516",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2516 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2608",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2608 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2708",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2708 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2303-8SP1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2008",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2208",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2304-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2008F",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2316",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2312-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2314-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924-4GC",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5916-8GC-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924SFP-4GC",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5916SFP-8GC-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"user": "00000000-0000-4000-9000-000000000000",
"value": "Gabriele Quagliarella from Nozomi Networks"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "A stack-based buffer overflow in the device\u0027s Telnet/SSH CLI login routine occurs when a unauthenticated attacker send an oversized or unexpected username input. An overflow condition crashes the thread handling the login attempt, forcing the session to close. Because other CLI sessions remain unaffected, the impact is limited to a low\u2011severity availability disruption.\u003cbr\u003e"
}
],
"value": "A stack-based buffer overflow in the device\u0027s Telnet/SSH CLI login routine occurs when a unauthenticated attacker send an oversized or unexpected username input. An overflow condition crashes the thread handling the login attempt, forcing the session to close. Because other CLI sessions remain unaffected, the impact is limited to a low\u2011severity availability disruption."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "CWE-121 Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-18T07:34:36.289Z",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"url": "https://certvde.com/de/advisories/VDE-2025-104"
}
],
"source": {
"advisory": "VDE-2025-104",
"defect": [
"CERT@VDE#641898"
],
"discovery": "UNKNOWN"
},
"title": "Stack-Based Buffer Overflow in CLI Login Username Handling over CLI",
"x_generator": {
"engine": "Vulnogram 0.1.0-dev"
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2026-22321",
"datePublished": "2026-03-18T07:34:36.289Z",
"dateReserved": "2026-01-07T11:49:15.178Z",
"dateUpdated": "2026-03-18T13:32:24.892Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-22790 (GCVE-0-2026-22790)
Vulnerability from cvelistv5 – Published: 2026-03-26 14:31 – Updated: 2026-03-26 15:19
VLAI
Title
EVerest's unchecked SLAC payload length causes stack overflow in HomeplugMessage::setup_payload
Summary
EVerest is an EV charging software stack. Prior to version 2026.02.0, `HomeplugMessage::setup_payload` trusts `len` after an `assert`; in release builds the check is removed, so oversized SLAC payloads are `memcpy`'d into a ~1497-byte stack buffer, corrupting the stack and enabling remote code execution from network-provided frames. Version 2026.02.0 contains a patch.
Severity
8.8 (High)
SSVC
Exploitation: poc
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://github.com/EVerest/EVerest/security/advis… | x_refsource_CONFIRM |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| EVerest | everest-core |
Affected:
< 2026.02.0
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-22790",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-03-26T15:19:32.904960Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-03-26T15:19:36.246Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"references": [
{
"tags": [
"exploit"
],
"url": "https://github.com/EVerest/EVerest/security/advisories/GHSA-wh8w-7cfc-gq7m"
}
],
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "everest-core",
"vendor": "EVerest",
"versions": [
{
"status": "affected",
"version": "\u003c 2026.02.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "EVerest is an EV charging software stack. Prior to version 2026.02.0, `HomeplugMessage::setup_payload` trusts `len` after an `assert`; in release builds the check is removed, so oversized SLAC payloads are `memcpy`\u0027d into a ~1497-byte stack buffer, corrupting the stack and enabling remote code execution from network-provided frames. Version 2026.02.0 contains a patch."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "CWE-121: Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-26T14:31:44.486Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/EVerest/EVerest/security/advisories/GHSA-wh8w-7cfc-gq7m",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/EVerest/EVerest/security/advisories/GHSA-wh8w-7cfc-gq7m"
}
],
"source": {
"advisory": "GHSA-wh8w-7cfc-gq7m",
"discovery": "UNKNOWN"
},
"title": "EVerest\u0027s unchecked SLAC payload length causes stack overflow in HomeplugMessage::setup_payload"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-22790",
"datePublished": "2026-03-26T14:31:44.486Z",
"dateReserved": "2026-01-09T18:27:19.388Z",
"dateUpdated": "2026-03-26T15:19:36.246Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-22903 (GCVE-0-2026-22903)
Vulnerability from cvelistv5 – Published: 2026-02-09 07:39 – Updated: 2026-02-09 15:36
VLAI
Title
Stack Overflow via SESSIONID Cookie in lighttpd
Summary
An unauthenticated remote attacker can send a crafted HTTP request containing an overly long SESSIONID cookie. This can trigger a stack buffer overflow in the modified lighttpd server, causing it to crash and potentially enabling remote code execution due to missing stack protections.
Severity
9.8 (Critical)
SSVC
Exploitation: none
Automatable: yes
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
1 reference
Impacted products
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-22903",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-02-09T15:36:08.801691Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-02-09T15:36:36.790Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "0852-1322",
"vendor": "WAGO",
"versions": [
{
"lessThanOrEqual": "2.64",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "0852-1328",
"vendor": "WAGO",
"versions": [
{
"lessThanOrEqual": "2.64",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "0852-1322",
"vendor": "WAGO",
"versions": [
{
"status": "affected",
"version": "2.64"
}
]
},
{
"defaultStatus": "unaffected",
"product": "0852-1328",
"vendor": "WAGO",
"versions": [
{
"status": "affected",
"version": "2.64"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"user": "00000000-0000-4000-9000-000000000000",
"value": "Diconium"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "An unauthenticated remote attacker can send a crafted HTTP request containing an overly long SESSIONID cookie. This can trigger a stack buffer overflow in the modified lighttpd server, causing it to crash and potentially enabling remote code execution due to missing stack protections.\u003cbr\u003e"
}
],
"value": "An unauthenticated remote attacker can send a crafted HTTP request containing an overly long SESSIONID cookie. This can trigger a stack buffer overflow in the modified lighttpd server, causing it to crash and potentially enabling remote code execution due to missing stack protections."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "CWE-121 Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-02-09T07:39:42.537Z",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"url": "https://certvde.com/de/advisories/VDE-2026-004"
}
],
"source": {
"advisory": "VDE-2026-004",
"defect": [
"CERT@VDE#641934"
],
"discovery": "UNKNOWN"
},
"title": "Stack Overflow via SESSIONID Cookie in lighttpd",
"x_generator": {
"engine": "Vulnogram 0.1.0-dev"
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2026-22903",
"datePublished": "2026-02-09T07:39:42.537Z",
"dateReserved": "2026-01-13T08:33:25.683Z",
"dateUpdated": "2026-02-09T15:36:36.790Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
Mitigation ID: MIT-10
Phases: Operation, Build and Compilation
Strategy: Environment Hardening
Description:
- Use automatic buffer overflow detection mechanisms that are offered by certain compilers or compiler extensions. Examples include: the Microsoft Visual Studio /GS flag, Fedora/Red Hat FORTIFY_SOURCE GCC flag, StackGuard, and ProPolice, which provide various mechanisms including canary-based detection and range/index checking.
- D3-SFCV (Stack Frame Canary Validation) from D3FEND [REF-1334] discusses canary-based detection in detail.
Mitigation
Phase: Architecture and Design
Description:
- Use an abstraction library to abstract away risky APIs. Not a complete solution.
Mitigation
Phase: Implementation
Description:
- Implement and perform bounds checking on input.
Mitigation
Phase: Implementation
Description:
- Do not use dangerous functions such as gets. Use safer, equivalent functions which check for boundary errors.
Mitigation ID: MIT-11
Phases: Operation, Build and Compilation
Strategy: Environment Hardening
Description:
- Run or compile the software using features or extensions that randomly arrange the positions of a program's executable and libraries in memory. Because this makes the addresses unpredictable, it can prevent an attacker from reliably jumping to exploitable code.
- Examples include Address Space Layout Randomization (ASLR) [REF-58] [REF-60] and Position-Independent Executables (PIE) [REF-64]. Imported modules may be similarly realigned if their default memory addresses conflict with other modules, in a process known as "rebasing" (for Windows) and "prelinking" (for Linux) [REF-1332] using randomly generated addresses. ASLR for libraries cannot be used in conjunction with prelink since it would require relocating the libraries at run-time, defeating the whole purpose of prelinking.
- For more information on these techniques see D3-SAOR (Segment Address Offset Randomization) from D3FEND [REF-1335].
No CAPEC attack patterns related to this CWE.