Phoenix Contact FL SWITCH 2005
Moderate fix1 remedy
Moderate fix1 remedy
- < 3.50
Phoenix Contact FL SWITCH 2xxx Undocumented UART Port Side-Channel Vulnerability for Root Access
Vulnerability
Patched
A vulnerability exists in Phoenix Contact FL SWITCH 2xxx firmware versions prior to 3.50, allowing an unauthenticated physical attacker to gain root access through an undocumented UART port on the PCB. This access can be achieved by using credentials obtained from another vulnerability, CVE-2025-41692.
Impact
Exploitation of this vulnerability provides unauthorized root access to the device.
Remediation
Users are advised to update to the latest FL SWITCH 2xxx firmware version 3.50, which addresses this vulnerability.
Added: Dec 9, 2025, 7:54 PM
Updated: Dec 9, 2025, 7:54 PM
Vulnerability Rating
Custom Algorithm
spread
0.0impact
7.5exploitability
3.3remediation
7.7relevance
1.4threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.