CVE-2014-9195

Phoenix Contact ProConOs & MultiProg - RCE

Title source: llm

Description

Phoenix Contact ProConOs and MultiProg do not require authentication, which allows remote attackers to execute arbitrary commands via protocol-compliant traffic.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Photubias · pythonremotehardware

https://www.exploit-db.com/exploits/37066

View Code ZIP pw:eip

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/scada/phoenix_command.rb

View Code ZIP pw:eip

References (3)

[Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/37066/

[Third Party Advisory, US Government Resource] https://ics-cert.us-cert.gov/advisories/ICSA-15-013-03

[Third Party Advisory, US Government Resource] https://www.cisa.gov/news-events/ics-advisories/icsa-15-013-03

Scores

EPSS 0.8249

EPSS Percentile 99.2%

Details

CWE

CWE-306 CWE-255

Status published

Products (4)

Phoenix Contact/MultiProg All versions

Phoenix Contact/ProConOs All versions

phoenixcontact-software/multiprog 5.0 (3 CPE variants)

phoenixcontact-software/proconos_eclr (4 CPE variants)

Published Jan 17, 2015

Tracked Since Feb 18, 2026