Phoenix Contact WHA-GW-F2D2-0-AS- Z2-ETH

Version 3.0.7

SEMANTIC 2 CVEs

Known Vulnerabilities

CVE-2021-34565

In PEPPERL+FUCHS WirelessHART-Gateway 3.0.7 to 3.0.9 the SSH and telnet services are active with hard-coded credentials.

CRITICAL CVSS 9.8 Published Aug 31, 2021

CVE-2021-33555

In PEPPERL+FUCHS WirelessHART-Gateway <= 3.0.7 the filename parameter is vulnerable to unauthenticated path traversal attacks, enabling read access to arbitrary files on the server.

HIGH CVSS 7.5 Published Aug 31, 2021