CVE-2017-16723 : A Cross-site Scripting issue was discovered in PHOENIX CONTACT FL COMSERVER BASI

A Cross-site Scripting issue was discovered in PHOENIX CONTACT FL COMSERVER BASIC 232/422/485, FL COMSERVER UNI 232/422/485, FL COMSERVER BAS 232/422/485-T, FL COMSERVER UNI 232/422/485-T, FL COM SERVER RS232, FL COM SERVER RS485, and PSI-MODEM/ETH (running firmware versions prior to 1.99, 2.20, or 2.40). The cross-site scripting vulnerability has been identified, which may allow remote code execution.

Published 2017-12-11 16:29:00

Updated 2018-01-02 14:37:49

Source ICS-CERT

View at NVD, CVE.org

Vulnerability category: Cross site scripting (XSS)Execute code

Products affected by CVE-2017-16723

Phoenixcontact » Fl Comserver Basic 232 Firmware » Version: 2.40
cpe:2.3:o:phoenixcontact:fl_comserver_basic_232_firmware:2.40:*:*:*:*:*:*:*
Matching versions
When used together with: Phoenixcontact » Fl Comserver Basic 232 » Version: N/A
Phoenixcontact » Fl Comserver Uni 422 Firmware » Version: 2.40
cpe:2.3:o:phoenixcontact:fl_comserver_uni_422_firmware:2.40:*:*:*:*:*:*:*
Matching versions
When used together with: Phoenixcontact » Fl Comserver Uni 422 » Version: N/A
Phoenixcontact » Fl Comserver Bas 485-t Firmware » Version: 2.40
cpe:2.3:o:phoenixcontact:fl_comserver_bas_485-t_firmware:2.40:*:*:*:*:*:*:*
Matching versions
When used together with: Phoenixcontact » Fl Comserver Bas 485-t » Version: N/A
Phoenixcontact » Fl Com Server Rs232 Firmware » Version: 1.99
cpe:2.3:o:phoenixcontact:fl_com_server_rs232_firmware:1.99:*:*:*:*:*:*:*
Matching versions
When used together with: Phoenixcontact » Fl Com Server Rs232 » Version: N/A
Phoenixcontact » Fl Com Server Rs485 Firmware » Version: 1.99
cpe:2.3:o:phoenixcontact:fl_com_server_rs485_firmware:1.99:*:*:*:*:*:*:*
Matching versions
When used together with: Phoenixcontact » Fl Com Server Rs485 » Version: N/A
Phoenixcontact » Psi-modem/eth Firmware » Version: 2.20
cpe:2.3:o:phoenixcontact:psi-modem\/eth_firmware:2.20:*:*:*:*:*:*:*
Matching versions
When used together with: Phoenixcontact » Psi-modem/eth » Version: N/A
Phoenixcontact » Fl Comserver Basic 422 Firmware » Version: 2.40
cpe:2.3:o:phoenixcontact:fl_comserver_basic_422_firmware:2.40:*:*:*:*:*:*:*
Matching versions
When used together with: Phoenixcontact » Fl Comserver Basic 422 » Version: N/A
Phoenixcontact » Fl Comserver Basic 485 Firmware » Version: 2.40
cpe:2.3:o:phoenixcontact:fl_comserver_basic_485_firmware:2.40:*:*:*:*:*:*:*
Matching versions
When used together with: Phoenixcontact » Fl Comserver Basic 485 » Version: N/A
Phoenixcontact » Fl Comserver Uni 485-t Firmware » Version: 2.40
cpe:2.3:o:phoenixcontact:fl_comserver_uni_485-t_firmware:2.40:*:*:*:*:*:*:*
Matching versions
When used together with: Phoenixcontact » Fl Comserver Uni 485-t » Version: N/A
Phoenixcontact » Fl Comserver Uni 485 Firmware » Version: 2.40
cpe:2.3:o:phoenixcontact:fl_comserver_uni_485_firmware:2.40:*:*:*:*:*:*:*
Matching versions
When used together with: Phoenixcontact » Fl Comserver Uni 485 » Version: N/A
Phoenixcontact » Fl Comserver Uni 232 Firmware » Version: 2.40
cpe:2.3:o:phoenixcontact:fl_comserver_uni_232_firmware:2.40:*:*:*:*:*:*:*
Matching versions
When used together with: Phoenixcontact » Fl Comserver Uni 232 » Version: N/A
Phoenixcontact » Fl Comserver Bas 422 Firmware » Version: 2.40
cpe:2.3:o:phoenixcontact:fl_comserver_bas_422_firmware:2.40:*:*:*:*:*:*:*
Matching versions
When used together with: Phoenixcontact » Fl Comserver Bas 422 » Version: N/A
Phoenixcontact » Fl Comserver Bas 232 Firmware » Version: 2.40
cpe:2.3:o:phoenixcontact:fl_comserver_bas_232_firmware:2.40:*:*:*:*:*:*:*
Matching versions
When used together with: Phoenixcontact » Fl Comserver Bas 232 » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2017-16723

EPSS FAQ

0.42%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 59 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2017-16723

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None
6.1	MEDIUM	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	2.8	2.7	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Changed Confidentiality: Low Integrity: Low Availability: None

CWE ids for CVE-2017-16723

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2017-16723

http://www.securityfocus.com/bid/102111

Multiple Phoenix Contact Products CVE-2017-16723 Cross Site Scripting Vulnerability
Third Party Advisory;VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-17-341-03

PHOENIX CONTACT FL COMSERVER, FL COM SERVER, and PSI-MODEM/ETH | CISA
Issue Tracking;Mitigation;Third Party Advisory;US Government Resource
https://cert.vde.com/de-de/advisories/vde-2017-004

PHOENIX CONTACT FL COMSERVER cross-site scripting (XSS) vulnerability — German (Germany)
Issue Tracking;Third Party Advisory

Jump to

Vulnerability Details : CVE-2017-16723

Products affected by CVE-2017-16723

Exploit prediction scoring system (EPSS) score for CVE-2017-16723

CVSS scores for CVE-2017-16723

CWE ids for CVE-2017-16723

References for CVE-2017-16723