Primary

Context

Phoenix Contact FL SWITCH Products Stack-Based Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

A stack-based buffer overflow vulnerability has been identified in Phoenix Contact FL SWITCH 2xxx, FL SWITCH TSN 23xx, and FL SWITCH 59xx firmware prior to version 3.53. This vulnerability allows a high-privileged attacker to send oversized POST parameters during the file transfer parameter workflow, causing memory corruption in an internal process and resulting in a denial-of-service condition.

Impact

Exploitation of this vulnerability leads to memory corruption, causing a denial-of-service condition on the device.

Remediation

Users are advised to update to the latest firmware version 3.53, which addresses this vulnerability.

Added: Mar 18, 2026, 8:31 AM

Updated: Mar 18, 2026, 8:31 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.0

remediation

0.0

relevance

4.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.0

remediation

0.0

relevance

4.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Phoenix Contact FL SWITCH Products Stack-Based Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating