CVE-2026-22317 - Vulnerability Details

A command injection vulnerability in the device’s Root CA certificate transfer workflow allows a high-privileged attacker to send crafted HTTP POST requests that result in arbitrary command execution on the underlying Linux OS with root privileges.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Phoenix Contact

FL SWITCH 2005

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2008

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2016

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2105

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2108

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2116

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2204-2TC-2SFX

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2205

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2206-2FX

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2206-2FX SM

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2206-2FX SM ST

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2206-2FX ST

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2206-2SFX

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2206-2SFX PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2206C-2FX

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2207-FX

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2207-FX SM

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2208

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2208 PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2208C

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2212-2TC-2SFX

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2214-2FX

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2214-2FX SM

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2214-2SFX

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2214-2SFX PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2216

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2216 PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2304-2GC-2SFP

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2306-2SFP

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2306-2SFP PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2308

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2308 PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2312-2GC-2SFP

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2314-2SFP

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2314-2SFP PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2316

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2316 PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2404-2TC-2SFX

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2406-2SFX

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2406-2SFX PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2408

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2408 PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2412-2TC-2SFX

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2414-2SFX

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2414-2SFX PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2416

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2416 PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2504-2GC-2SFP

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2506-2SFP

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2506-2SFP PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2508

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2508 PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2512-2GC-2SFP

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2514-2SFP

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2514-2SFP PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2516

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2516 PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2608

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2608 PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2708

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2708 PN

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2303-8SP1

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL NAT 2008

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL NAT 2208

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL NAT 2304-2GC-2SFP

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2008F

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2316/K1

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2506-2SFP/K1

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 2508/K1

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH TSN 2316

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH TSN 2312-2GC-2SFP

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH TSN 2314-2SFP

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 5924-4GC

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 5916-8GC-4SFP+

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 5924SFP-4GC

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 5924-4SFP+

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

Phoenix Contact

FL SWITCH 5916SFP-8GC-4SFP+

unaffected

Version	Status	Constraints
`0.0.0`	affected	< 3.53

No data.

Project Subscriptions

No data.

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://certvde.com/de/advisories/VDE-2025-104

History

Wed, 18 Mar 2026 07:45:00 +0000

Type	Values Removed	Values Added
Description		A command injection vulnerability in the device’s Root CA certificate transfer workflow allows a high-privileged attacker to send crafted HTTP POST requests that result in arbitrary command execution on the underlying Linux OS with root privileges.
Title		Command Injection Vulnerability in Root CA Certificate Transfer Workflow
Weaknesses		CWE-77
References		https://certvde.com/de/advisories/VDE-2025-104
Metrics		cvssV3_1 `{'score': 7.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: CERTVDE

Published: 2026-03-18T07:33:44.394Z

Updated: 2026-03-18T07:33:44.394Z

Reserved: 2026-01-07T11:49:15.178Z

Link: CVE-2026-22317

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-03-18T08:16:27.580

Modified: 2026-03-18T08:16:27.580

Link: CVE-2026-22317

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-77

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object