Reflected XSS vulnerability in pxc_PortCfg.php_CVE-2025-41750

7.1 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

Description

An XSS vulnerability in pxc_PortCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management (WBM). The vulnerability does not provide access to system-level resources such as operating system internals or privileged functions. Access is limited to device configuration parameters that are available in the context of the web application. The session cookie is secured by the httpOnly Flag. Therefore an attacker is not able to take over the session of an authenticated user.

Basic Information

ID CVE-2025-41750

Source CERTVDE

Published Dec 9, 2025 at 08:07

Affected Product

Vendor Phoenix Contact

Product FL SWITCH 2005

Version 0.0.0

Affected Versions Phoenix Contact FL SWITCH 2005 0.0.0
Phoenix Contact FL SWITCH 2008 0.0.0
Phoenix Contact FL SWITCH 2016 0.0.0
Phoenix Contact FL SWITCH 2105 0.0.0
Phoenix Contact FL SWITCH 2108 0.0.0
Phoenix Contact FL SWITCH 2116 0.0.0
Phoenix Contact FL SWITCH 2204-2TC-2SFX 0.0.0
Phoenix Contact FL SWITCH 2205 0.0.0
Phoenix Contact FL SWITCH 2206-2FX 0.0.0
Phoenix Contact FL SWITCH 2206-2FX SM 0.0.0
Phoenix Contact FL SWITCH 2206-2FX SM ST 0.0.0
Phoenix Contact FL SWITCH 2206-2FX ST 0.0.0
Phoenix Contact FL SWITCH 2206-2SFX 0.0.0
Phoenix Contact FL SWITCH 2206-2SFX PN 0.0.0
Phoenix Contact FL SWITCH 2206C-2FX 0.0.0
Phoenix Contact FL SWITCH 2207-FX 0.0.0
Phoenix Contact FL SWITCH 2207-FX SM 0.0.0
Phoenix Contact FL SWITCH 2208 0.0.0
Phoenix Contact FL SWITCH 2208 PN 0.0.0
Phoenix Contact FL SWITCH 2208C 0.0.0
Phoenix Contact FL SWITCH 2212-2TC-2SFX 0.0.0
Phoenix Contact FL SWITCH 2214-2FX 0.0.0
Phoenix Contact FL SWITCH 2214-2FX SM 0.0.0
Phoenix Contact FL SWITCH 2214-2SFX 0.0.0
Phoenix Contact FL SWITCH 2214-2SFX PN 0.0.0
Phoenix Contact FL SWITCH 2216 0.0.0
Phoenix Contact FL SWITCH 2216 PN 0.0.0
Phoenix Contact FL SWITCH 2304-2GC-2SFP 0.0.0
Phoenix Contact FL SWITCH 2306-2SFP 0.0.0
Phoenix Contact FL SWITCH 2306-2SFP PN 0.0.0
Phoenix Contact FL SWITCH 2308 0.0.0
Phoenix Contact FL SWITCH 2308 PN 0.0.0
Phoenix Contact FL SWITCH 2312-2GC-2SFP 0.0.0
Phoenix Contact FL SWITCH 2314-2SFP 0.0.0
Phoenix Contact FL SWITCH 2314-2SFP PN 0.0.0
Phoenix Contact FL SWITCH 2316 0.0.0
Phoenix Contact FL SWITCH 2316 PN 0.0.0
Phoenix Contact FL SWITCH 2404-2TC-2SFX 0.0.0
Phoenix Contact FL SWITCH 2406-2SFX 0.0.0
Phoenix Contact FL SWITCH 2406-2SFX PN 0.0.0
Phoenix Contact FL SWITCH 2408 0.0.0
Phoenix Contact FL SWITCH 2408 PN 0.0.0
Phoenix Contact FL SWITCH 2412-2TC-2SFX 0.0.0
Phoenix Contact FL SWITCH 2414-2SFX 0.0.0
Phoenix Contact FL SWITCH 2414-2SFX PN 0.0.0
Phoenix Contact FL SWITCH 2416 0.0.0
Phoenix Contact FL SWITCH 2416 PN 0.0.0
Phoenix Contact FL SWITCH 2504-2GC-2SFP 0.0.0
Phoenix Contact FL SWITCH 2506-2SFP 0.0.0
Phoenix Contact FL SWITCH 2506-2SFP PN 0.0.0
Phoenix Contact FL SWITCH 2508 0.0.0
Phoenix Contact FL SWITCH 2508 PN 0.0.0
Phoenix Contact FL SWITCH 2512-2GC-2SFP 0.0.0
Phoenix Contact FL SWITCH 2514-2SFP 0.0.0
Phoenix Contact FL SWITCH 2514-2SFP PN 0.0.0
Phoenix Contact FL SWITCH 2516 0.0.0
Phoenix Contact FL SWITCH 2516 PN 0.0.0
Phoenix Contact FL SWITCH 2608 0.0.0
Phoenix Contact FL SWITCH 2608 PN 0.0.0
Phoenix Contact FL SWITCH 2708 0.0.0
Phoenix Contact FL SWITCH 2708 PN 0.0.0
Phoenix Contact FL SWITCH 2303-8SP1 0.0.0
Phoenix Contact FL NAT 2008 0.0.0
Phoenix Contact FL NAT 2208 0.0.0
Phoenix Contact FL NAT 2304-2GC-2SFP 0.0.0
Phoenix Contact FL SWITCH 2008F 0.0.0
Phoenix Contact FL SWITCH 2316/K1 0.0.0
Phoenix Contact FL SWITCH 2506-2SFP/K1 0.0.0
Phoenix Contact FL SWITCH 2508/K1 0.0.0

CWE Classification

CWE-79

References

certvde.com /de/advisories/VDE-2025-071

{
    "lastseen": "",
    "description": "An XSS vulnerability in pxc_PortCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management (WBM). The vulnerability does not provide access to system-level resources such as operating system internals or privileged functions. Access is limited to device configuration parameters that are available in the context of the web application. The session cookie is secured by the httpOnly Flag. Therefore an attacker is not able to take over the session of an authenticated user.",
    "published": "2025-12-09T08:07:58.533Z",
    "modified": "2025-12-09T08:07:58.533Z",
    "type": "cve",
    "title": "Reflected XSS vulnerability in pxc_PortCfg.php",
    "source": "CERTVDE",
    "references": "https://certvde.com/de/advisories/VDE-2025-071",
    "id": "CVE-2025-41750",
    "bulletinFamily": "",
    "cwe": [
        "CWE-79"
    ],
    "cvelist": null,
    "sourceData": "Phoenix Contact FL SWITCH 2005 0.0.0\nPhoenix Contact FL SWITCH 2008 0.0.0\nPhoenix Contact FL SWITCH 2016 0.0.0\nPhoenix Contact FL SWITCH 2105 0.0.0\nPhoenix Contact FL SWITCH 2108 0.0.0\nPhoenix Contact FL SWITCH 2116 0.0.0\nPhoenix Contact FL SWITCH 2204-2TC-2SFX 0.0.0\nPhoenix Contact FL SWITCH 2205 0.0.0\nPhoenix Contact FL SWITCH 2206-2FX 0.0.0\nPhoenix Contact FL SWITCH 2206-2FX SM 0.0.0\nPhoenix Contact FL SWITCH 2206-2FX SM ST 0.0.0\nPhoenix Contact FL SWITCH 2206-2FX ST 0.0.0\nPhoenix Contact FL SWITCH 2206-2SFX 0.0.0\nPhoenix Contact FL SWITCH 2206-2SFX PN 0.0.0\nPhoenix Contact FL SWITCH 2206C-2FX 0.0.0\nPhoenix Contact FL SWITCH 2207-FX 0.0.0\nPhoenix Contact FL SWITCH 2207-FX SM 0.0.0\nPhoenix Contact FL SWITCH 2208 0.0.0\nPhoenix Contact FL SWITCH 2208 PN 0.0.0\nPhoenix Contact FL SWITCH 2208C 0.0.0\nPhoenix Contact FL SWITCH 2212-2TC-2SFX 0.0.0\nPhoenix Contact FL SWITCH 2214-2FX 0.0.0\nPhoenix Contact FL SWITCH 2214-2FX SM 0.0.0\nPhoenix Contact FL SWITCH 2214-2SFX 0.0.0\nPhoenix Contact FL SWITCH 2214-2SFX PN 0.0.0\nPhoenix Contact FL SWITCH 2216 0.0.0\nPhoenix Contact FL SWITCH 2216 PN 0.0.0\nPhoenix Contact FL SWITCH 2304-2GC-2SFP 0.0.0\nPhoenix Contact FL SWITCH 2306-2SFP 0.0.0\nPhoenix Contact FL SWITCH 2306-2SFP PN 0.0.0\nPhoenix Contact FL SWITCH 2308 0.0.0\nPhoenix Contact FL SWITCH 2308 PN 0.0.0\nPhoenix Contact FL SWITCH 2312-2GC-2SFP 0.0.0\nPhoenix Contact FL SWITCH 2314-2SFP 0.0.0\nPhoenix Contact FL SWITCH 2314-2SFP PN 0.0.0\nPhoenix Contact FL SWITCH 2316 0.0.0\nPhoenix Contact FL SWITCH 2316 PN 0.0.0\nPhoenix Contact FL SWITCH 2404-2TC-2SFX 0.0.0\nPhoenix Contact FL SWITCH 2406-2SFX 0.0.0\nPhoenix Contact FL SWITCH 2406-2SFX PN 0.0.0\nPhoenix Contact FL SWITCH 2408 0.0.0\nPhoenix Contact FL SWITCH 2408 PN 0.0.0\nPhoenix Contact FL SWITCH 2412-2TC-2SFX 0.0.0\nPhoenix Contact FL SWITCH 2414-2SFX 0.0.0\nPhoenix Contact FL SWITCH 2414-2SFX PN 0.0.0\nPhoenix Contact FL SWITCH 2416 0.0.0\nPhoenix Contact FL SWITCH 2416 PN 0.0.0\nPhoenix Contact FL SWITCH 2504-2GC-2SFP 0.0.0\nPhoenix Contact FL SWITCH 2506-2SFP 0.0.0\nPhoenix Contact FL SWITCH 2506-2SFP PN 0.0.0\nPhoenix Contact FL SWITCH 2508 0.0.0\nPhoenix Contact FL SWITCH 2508 PN 0.0.0\nPhoenix Contact FL SWITCH 2512-2GC-2SFP 0.0.0\nPhoenix Contact FL SWITCH 2514-2SFP 0.0.0\nPhoenix Contact FL SWITCH 2514-2SFP PN 0.0.0\nPhoenix Contact FL SWITCH 2516 0.0.0\nPhoenix Contact FL SWITCH 2516 PN 0.0.0\nPhoenix Contact FL SWITCH 2608 0.0.0\nPhoenix Contact FL SWITCH 2608 PN 0.0.0\nPhoenix Contact FL SWITCH 2708 0.0.0\nPhoenix Contact FL SWITCH 2708 PN 0.0.0\nPhoenix Contact FL SWITCH 2303-8SP1 0.0.0\nPhoenix Contact FL NAT 2008 0.0.0\nPhoenix Contact FL NAT 2208 0.0.0\nPhoenix Contact FL NAT 2304-2GC-2SFP 0.0.0\nPhoenix Contact FL SWITCH 2008F 0.0.0\nPhoenix Contact FL SWITCH 2316/K1 0.0.0\nPhoenix Contact FL SWITCH 2506-2SFP/K1 0.0.0\nPhoenix Contact FL SWITCH 2508/K1 0.0.0",
    "sourceHref": "",
    "cvss": {
        "score": 7.1,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "FL SWITCH 2005",
    "version": "0.0.0",
    "vendor": "Phoenix Contact",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}