Summary
VDE-2026-060: A unauthenticated log download vulnerability in the firmware of CHARX SEC-3xxx charging controllers has been discovered.
Impact
The vulnerability can lead to restricted information being disclosed to an unauthenticated attacker.
Affected Product(s)
| Model no. | Product name | Affected versions |
|---|---|---|
| 1139022 | CHARX SEC-3000 | Firmware <1.9.0 |
| 1139018 | CHARX SEC-3050 | Firmware <1.9.0 |
| 1139012 | CHARX SEC-3100 | Firmware <1.9.0 |
| 1138965 | CHARX SEC-3150 | Firmware <1.9.0 |
Vulnerabilities
Expand / Collapse allIt is possible for an unauthenticated adjacent attacker to download log files of the controller, which may disclose some restricted information.
Mitigation
Affected charging controllers are designed and developed for the use in closed industrial networks. Phoenix Contact therefore strongly recommends using the devices exclusively in closed networks and protected by a suitable firewall.
Remediation
Phoenix Contact recommends to upgrade to firmware version 1.9.0 which fixes this vulnerability.
Acknowledgments
Phoenix Contact GmbH & Co. KG thanks the following parties for their efforts:
- CERTVDE for coordination. (see https://certvde.com/en/ )
- Piotr Ptaszek, Mateusz Wójcik from ZDI for reporting.
Revision History
| Version | Date | Summary |
|---|---|---|
| 1.0.0 | 06/03/2026 12:00 | Initial revision |
| 1.0.1 | 06/03/2026 12:01 | added "Firmware" to the textual description of the relationships. |