CVE-2026-22322

HIGH

Stored Cross‑Site Scripting in Link Aggregation Name Handling

Title source: cna

Description

A stored cross‑site scripting (XSS) vulnerability in the Link Aggregation configuration interface allows an unauthenticated remote attacker to create a trunk entry containing malicious HTML/JavaScript code. When the affected page is viewed, the injected script executes in the context of the victim’s browser, enabling unauthorized actions such as interface manipulation. The session cookie is secured by the httpOnly Flag. Therefore an attacker is not able to take over the session of an authenticated user.

References (1)

https://certvde.com/de/advisories/VDE-2025-104

Scores

CVSS v3 7.1

EPSS 0.0003

EPSS Percentile 8.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

Details

CWE

CWE-79

Status published

Products (50)

Phoenix Contact/FL NAT 2008 0.0.0 - 3.53

Phoenix Contact/FL NAT 2208 0.0.0 - 3.53

Phoenix Contact/FL NAT 2304-2GC-2SFP 0.0.0 - 3.53

Phoenix Contact/FL SWITCH 2005 0.0.0 - 3.53

Phoenix Contact/FL SWITCH 2008 0.0.0 - 3.53

Phoenix Contact/FL SWITCH 2008F 0.0.0 - 3.53

Phoenix Contact/FL SWITCH 2016 0.0.0 - 3.53

Phoenix Contact/FL SWITCH 2105 0.0.0 - 3.53

Phoenix Contact/FL SWITCH 2108 0.0.0 - 3.53

Phoenix Contact/FL SWITCH 2116 0.0.0 - 3.53

... and 40 more

Published Mar 18, 2026

Tracked Since Mar 18, 2026