Volerion logoVolerion
Volerion logoVolerion

Phoenix Contact FL SWITCH 2xxx Command Execution Vulnerability

Vulnerability

A vulnerability exists in Phoenix Contact FL SWITCH 2xxx firmware prior to version 3.50, allowing low-privileged remote attackers to execute commands via SSH immediately after logging in. This activity consumes resources and degrades the performance of management functions, although switching capabilities remain unaffected.

Impact

Exploitation of this vulnerability leads to unauthorized command execution, causing a resource drain that impairs the device's management functions.

Remediation

Users are advised to update to the latest FL SWITCH 2xxx firmware version 3.50, which addresses this vulnerability.

Added: Dec 9, 2025, 8:02 PM
Updated: Dec 9, 2025, 8:02 PM

Vulnerability Rating

Custom Algorithm
spread
4.5
impact
2.5
exploitability
4.9
remediation
7.7
relevance
1.4
threat
0.0
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.