Action not permitted
Modal body text goes here.
Modal Title
Modal Body
FKIE_CVE-2026-22318
Vulnerability from fkie_nvd - Published: 2026-03-18 08:16 - Updated: 2026-03-18 14:52
Severity ?
Summary
A stack-based buffer overflow vulnerability in the device's file transfer parameter workflow allows a high-privileged attacker to send oversized POST parameters, causing memory corruption in an internal process, resulting in a DoS attack.
References
Impacted products
| Vendor | Product | Version |
|---|
{
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A stack-based buffer overflow vulnerability in the device\u0027s file transfer parameter workflow allows a high-privileged attacker to send oversized POST parameters, causing memory corruption in an internal process, resulting in a DoS attack."
},
{
"lang": "es",
"value": "Una vulnerabilidad de desbordamiento de b\u00fafer basado en pila en el flujo de trabajo de par\u00e1metros de transferencia de archivos del dispositivo permite a un atacante con altos privilegios enviar par\u00e1metros POST sobredimensionados, causando corrupci\u00f3n de memoria en un proceso interno, resultando en un ataque DoS."
}
],
"id": "CVE-2026-22318",
"lastModified": "2026-03-18T14:52:44.227",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.2,
"impactScore": 3.6,
"source": "info@cert.vde.com",
"type": "Primary"
}
]
},
"published": "2026-03-18T08:16:28.060",
"references": [
{
"source": "info@cert.vde.com",
"url": "https://certvde.com/de/advisories/VDE-2025-104"
}
],
"sourceIdentifier": "info@cert.vde.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-121"
}
],
"source": "info@cert.vde.com",
"type": "Primary"
}
]
}
CVE-2026-22318 (GCVE-0-2026-22318)
Vulnerability from cvelistv5 – Published: 2026-03-18 07:33 – Updated: 2026-03-18 13:57
VLAI?
EPSS
Title
Stack-Based Buffer Overflow in File Transfer Parameter Handling
Summary
A stack-based buffer overflow vulnerability in the device's file transfer parameter workflow allows a high-privileged attacker to send oversized POST parameters, causing memory corruption in an internal process, resulting in a DoS attack.
Severity ?
4.9 (Medium)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
Impacted products
| Vendor | Product | Version | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Phoenix Contact | FL SWITCH 2005 |
Affected:
0.0.0 , < 3.53
(semver)
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Credits
Gabriele Quagliarella from Nozomi Networks
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-22318",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-03-18T13:40:21.762727Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-03-18T13:57:31.902Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2005",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2008",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2016",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2105",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2108",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2116",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2204-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2205",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX SM ST",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2FX ST",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2206C-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2207-FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2207-FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2208C",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2212-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2FX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2FX SM",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2214-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2216",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2216 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2304-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2306-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2306-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2308",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2308 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2312-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2314-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2314-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2404-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2406-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2406-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2408",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2408 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2412-2TC-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2414-2SFX",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2414-2SFX PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2416",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2416 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2504-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2512-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2514-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2514-2SFP PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2516",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2516 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2608",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2608 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2708",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2708 PN",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2303-8SP1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2008",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2208",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL NAT 2304-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2008F",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2316/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2506-2SFP/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 2508/K1",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2316",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2312-2GC-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH TSN 2314-2SFP",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924-4GC",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5916-8GC-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924SFP-4GC",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5924-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "FL SWITCH 5916SFP-8GC-4SFP+",
"vendor": "Phoenix Contact",
"versions": [
{
"lessThan": "3.53",
"status": "affected",
"version": "0.0.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"user": "00000000-0000-4000-9000-000000000000",
"value": "Gabriele Quagliarella from Nozomi Networks"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "A stack-based buffer overflow vulnerability in the device\u0027s file transfer parameter workflow allows a high-privileged attacker to send oversized POST parameters, causing memory corruption in an internal process, resulting in a DoS attack.\u003cbr\u003e"
}
],
"value": "A stack-based buffer overflow vulnerability in the device\u0027s file transfer parameter workflow allows a high-privileged attacker to send oversized POST parameters, causing memory corruption in an internal process, resulting in a DoS attack."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "CWE-121 Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-18T07:33:55.612Z",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"url": "https://certvde.com/de/advisories/VDE-2025-104"
}
],
"source": {
"advisory": "VDE-2025-104",
"defect": [
"CERT@VDE#641898"
],
"discovery": "UNKNOWN"
},
"title": "Stack-Based Buffer Overflow in File Transfer Parameter Handling",
"x_generator": {
"engine": "Vulnogram 0.1.0-dev"
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2026-22318",
"datePublished": "2026-03-18T07:33:55.612Z",
"dateReserved": "2026-01-07T11:49:15.178Z",
"dateUpdated": "2026-03-18T13:57:31.902Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
Loading…
Show additional events:
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…