Volerion logoVolerion
Volerion logoVolerion

Phoenix Contact FL SWITCH Products Stack-Based Buffer Overflow Vulnerability in Telnet/SSH CLI Login

Vulnerability

A stack-based buffer overflow vulnerability has been identified in the Telnet/SSH command-line interface login process of certain Phoenix Contact FL SWITCH models. This vulnerability affects firmware versions prior to 3.53. When an unauthenticated attacker sends an oversized or unexpected username, it triggers an overflow that crashes the thread managing the login attempt, abruptly closing the session. However, this disruption only impacts the affected session, leaving other command-line interface sessions intact, which limits the overall severity of the availability issue.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the affected session to crash and close, while other sessions remain unaffected.

Remediation

Users are advised to update to the latest firmware version 3.53, which addresses this vulnerability.

Added: Mar 18, 2026, 8:26 AM
Updated: Mar 18, 2026, 8:26 AM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
0.6
exploitability
7.4
remediation
0.0
relevance
4.1
threat
0.0
urgency
2.9
incentive
4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.