CVE-2025-41697 - Vulnerability Details - OpenCVE

An attacker can use an undocumented UART port on the PCB as a side-channel to get root access e.g. with the credentials obtained from CVE-2025-41692.

No CVSS v4.0

Attack Vector Physical

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact total

No data.

No data.

No data.

References

Link	Providers
https://certvde.com/de/advisories/VDE-2025-071

History

Tue, 09 Dec 2025 15:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Tue, 09 Dec 2025 08:15:00 +0000

Type	Values Removed	Values Added
Description		An attacker can use an undocumented UART port on the PCB as a side-channel to get root access e.g. with the credentials obtained from CVE-2025-41692.
Title		Shell access to UART Console
Weaknesses		CWE-1299
References		https://certvde.com/de/advisories/VDE-2025-071
Metrics		cvssV3_1 `{'score': 6.8, 'vector': 'CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: CERTVDE

Published: 2025-12-09T08:12:16.507Z

Updated: 2025-12-09T14:34:39.435Z

Reserved: 2025-04-16T11:17:48.310Z

Link: CVE-2025-41697

Vulnrichment

Updated: 2025-12-09T14:34:35.914Z

NVD

Status : Awaiting Analysis

Published: 2025-12-09T16:17:49.247

Modified: 2025-12-09T18:36:53.557

Link: CVE-2025-41697

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-41697", "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "state": "PUBLISHED", "assignerShortName": "CERTVDE", "dateReserved": "2025-04-16T11:17:48.310Z", "datePublished": "2025-12-09T08:12:16.507Z", "dateUpdated": "2025-12-09T14:34:39.435Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "FL SWITCH 2005", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2008", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2016", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2105", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2108", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2116", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2204-2TC-2SFX", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2205", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2206-2FX", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2206-2FX SM", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2206-2FX SM ST", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2206-2FX ST", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2206-2SFX", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2206-2SFX PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2206C-2FX", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2207-FX", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2207-FX SM", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2208", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2208 PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2208C", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2212-2TC-2SFX", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2214-2FX", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2214-2FX SM", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2214-2SFX", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2214-2SFX PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2216", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2216 PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2304-2GC-2SFP", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2306-2SFP", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2306-2SFP PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2308", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2308 PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2312-2GC-2SFP", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2314-2SFP", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2314-2SFP PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2316", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2316 PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2404-2TC-2SFX", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2406-2SFX", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2406-2SFX PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2408", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2408 PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2412-2TC-2SFX", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2414-2SFX", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2414-2SFX PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2416", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2416 PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2504-2GC-2SFP", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2506-2SFP", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2506-2SFP PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2508", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2508 PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2512-2GC-2SFP", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2514-2SFP", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2514-2SFP PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2516", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2516 PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2608", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2608 PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2708", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2708 PN", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2303-8SP1", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL NAT 2008", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL NAT 2208", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL NAT 2304-2GC-2SFP", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2008F", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2316/K1", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2506-2SFP/K1", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "FL SWITCH 2508/K1", "vendor": "Phoenix Contact", "versions": [{"lessThan": "3.50", "status": "affected", "version": "0.0.0", "versionType": "semver"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "D. Blagojevic, S. Dietz, F. Koroknai, T. Weber from CyberDanube"}], "datePublic": "2025-12-09T08:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An attacker can use an undocumented UART port on the PCB as a side-channel to get root access e.g. with the credentials obtained from CVE-2025-41692.<br>"}], "value": "An attacker can use an undocumented UART port on the PCB as a side-channel to get root access e.g. with the credentials obtained from CVE-2025-41692."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-1299", "description": "CWE-1299 Missing Protection Mechanism for Alternate Hardware Interface", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "shortName": "CERTVDE", "dateUpdated": "2025-12-09T08:12:16.507Z"}, "references": [{"url": "https://certvde.com/de/advisories/VDE-2025-071"}], "source": {"advisory": "VDE-2025-071", "defect": ["CERT@VDE#641831"], "discovery": "UNKNOWN"}, "title": "Shell access to UART Console", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-12-09T14:34:33.219161Z", "id": "CVE-2025-41697", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-12-09T14:34:39.435Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-41697", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-12-09T14:34:33.219161Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-12-09T14:34:35.914Z"}}], "cna": {"title": "Shell access to UART Console", "source": {"defect": ["CERT@VDE#641831"], "advisory": "VDE-2025-071", "discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "D. Blagojevic, S. Dietz, F. Koroknai, T. Weber from CyberDanube"}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.8, "attackVector": "PHYSICAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Phoenix Contact", "product": "FL SWITCH 2005", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2008", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2016", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2105", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2108", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2116", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2204-2TC-2SFX", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2205", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2206-2FX", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2206-2FX SM", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2206-2FX SM ST", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2206-2FX ST", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2206-2SFX", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2206-2SFX PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2206C-2FX", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2207-FX", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2207-FX SM", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2208", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2208 PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2208C", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2212-2TC-2SFX", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2214-2FX", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2214-2FX SM", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2214-2SFX", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2214-2SFX PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2216", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2216 PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2304-2GC-2SFP", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2306-2SFP", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2306-2SFP PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2308", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2308 PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2312-2GC-2SFP", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2314-2SFP", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2314-2SFP PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2316", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2316 PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2404-2TC-2SFX", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2406-2SFX", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2406-2SFX PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2408", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2408 PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2412-2TC-2SFX", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2414-2SFX", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2414-2SFX PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2416", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2416 PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2504-2GC-2SFP", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2506-2SFP", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2506-2SFP PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2508", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2508 PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2512-2GC-2SFP", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2514-2SFP", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2514-2SFP PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2516", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2516 PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2608", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2608 PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2708", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2708 PN", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2303-8SP1", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL NAT 2008", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL NAT 2208", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL NAT 2304-2GC-2SFP", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2008F", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2316/K1", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2506-2SFP/K1", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Phoenix Contact", "product": "FL SWITCH 2508/K1", "versions": [{"status": "affected", "version": "0.0.0", "lessThan": "3.50", "versionType": "semver"}], "defaultStatus": "unaffected"}], "datePublic": "2025-12-09T08:00:00.000Z", "references": [{"url": "https://certvde.com/de/advisories/VDE-2025-071"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "An attacker can use an undocumented UART port on the PCB as a side-channel to get root access e.g. with the credentials obtained from CVE-2025-41692.", "supportingMedia": [{"type": "text/html", "value": "An attacker can use an undocumented UART port on the PCB as a side-channel to get root access e.g. with the credentials obtained from CVE-2025-41692.<br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1299", "description": "CWE-1299 Missing Protection Mechanism for Alternate Hardware Interface"}]}], "providerMetadata": {"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "shortName": "CERTVDE", "dateUpdated": "2025-12-09T08:12:16.507Z"}}}, "cveMetadata": {"cveId": "CVE-2025-41697", "state": "PUBLISHED", "dateUpdated": "2025-12-09T14:34:39.435Z", "dateReserved": "2025-04-16T11:17:48.310Z", "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "datePublished": "2025-12-09T08:12:16.507Z", "assignerShortName": "CERTVDE"}, "dataVersion": "5.2"}