CVE-2025-2813
HIGHPhoenix Contact AXL F BK and IL BK-PAC - Unauthenticated Denial of Service via HTTP Request Flood
Title source: llmDescription
An unauthenticated remote attacker can cause a Denial of Service by sending a large number of requests to the http service on port 80.
References (1)
Core 1
Core References
Various Sources
https://certvde.com/en/advisories/VDE-2025-029/
Scores
CVSS v3
7.5
EPSS
0.0058
EPSS Percentile
42.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-770
Status
published
Products (14)
Phoenix Contact/AXL F BK EIP
0.0 - 1.30
Phoenix Contact/AXL F BK EIP EF
0.0 - 1.30
Phoenix Contact/AXL F BK EIP XC
0.0 - 1.30
Phoenix Contact/AXL F BK ETH
0.0 - 1.31
Phoenix Contact/AXL F BK ETH XC
0.0 - 1.31
Phoenix Contact/AXL F BK PN (discontinued)
0.0 - 1.06
Phoenix Contact/AXL F BK PN TPS
0.0 - 1.33
Phoenix Contact/AXL F BK PN TPS XC
0.0 - 1.33
Phoenix Contact/AXL F BK PN XC (discontinued)
0.0 - 1.06
Phoenix Contact/AXL F BK SAS (discontinued)
0.0 - 1.35
... and 4 more
Published
Jul 31, 2025
Tracked Since
Feb 18, 2026