CVE-2014-9195

CVE-2014-9195: Phoenix Contact Software ProConOs and MultiProg Missing Authentication for Critical Function

Vendor Phoenix Contact
Product ProConOs
Weakness CWE-306 · Missing auth
Published January 17, 2015
Last update September 5, 2025

CVSS base score

What the vulnerability does

01Description

Phoenix Contact ProConOs and MultiProg do not require authentication, which allows remote attackers to execute arbitrary commands via protocol-compliant traffic.

Key dates

02Disclosure timeline

January 17, 2015 CVE published
September 5, 2025 Record updated