CVE-2025-41694

high-risk

Published 2025-12-09

A low privileged remote attacker can run the webshell with an empty command containing whitespace. The server will then block until it receives more data, resulting in a DoS condition of the websserver.

Do I need to act?

0.20% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.5/10 Medium

NETWORK / LOW complexity

Affected Products (20)

Fl Switch 2708 Pn Firmware

Fl Switch 2708 Firmware

Fl Switch 2608 Pn Firmware

Fl Switch 2608 Firmware

Fl Switch 2516 Pn Firmware

Fl Switch 2208C Firmware

Fl Switch 2208 Pn Firmware

Fl Switch 2208 Firmware

Fl Switch 2207-Fx Sm Firmware

Fl Switch 2207-Fx Firmware

Fl Switch 2206C-2Fx Firmware

Fl Switch 2206-2Sfx Pn Firmware

Fl Switch 2206-2Sfx Firmware

Fl Switch 2206-2Fx St Firmware

Fl Switch 2206-2Fx Sm St Firmware

Fl Switch 2206-2Fx Sm Firmware

Fl Switch 2206-2Fx Firmware

Fl Switch 2205 Firmware

Fl Switch 2204-2Tc-2Sfx Firmware

Fl Switch 2116 Firmware

Affected Vendors

Phoenixcontact

References (1)

Third Party Advisory https://certvde.com/de/advisories/VDE-2025-071

/ 100

high-risk

Severity 24/34 · High

Exploitability 1/34 · Minimal

Exposure 28/34 · Critical