CVE-2023-37861

Name of the Vulnerable Software and Affected Versions PHOENIX CONTACTs WP 6xxx series web panels versions prior to 4.0.10

Description The issue exists due to the lack of measures to neutralize special elements used in the operating system command. This can allow a remote attacker to execute arbitrary code using a specially crafted HTTP POST request, such as when uploading a certificate to the device. An authenticated remote attacker can execute code with root permissions.

Recommendations For versions prior to 4.0.10, update to version 4.0.10 or later to resolve the issue. As a temporary workaround, consider restricting access to the certificate upload feature until a patch is available. Avoid using the vulnerable HTTP POST request to upload certificates to the device until the issue is resolved.