This page lists publicly disclosed CVE vulnerabilities affecting phoenixcontact fl_switch_smcs_8tx_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2021-21005 | In Phoenix Contact FL SWITCH SMCS series products in multiple versions if an attacker sends a hand-crafted TCP-Packet with the Urgent-Flag set and the Urgent-Pointer set to 0, the network stack will crash. The device needs to be rebooted afterwards. | [email protected] | 7.5 | 0.68% | 2021-06-25 | 2026-06-16 |
| CVE-2021-21004 | In Phoenix Contact FL SWITCH SMCS series products in multiple versions an attacker may insert malicious code via LLDP frames into the web-based management which could then be executed by the client. | [email protected] | 7.4 | 0.58% | 2021-06-25 | 2026-06-16 |
| CVE-2021-21003 | In Phoenix Contact FL SWITCH SMCS series products in multiple versions fragmented TCP-Packets may cause a Denial of Service of Web-, SNMP- and ICMP-Echo services. The switching functionality of the device is not affected. | [email protected] | 5.3 | 0.95% | 2021-06-25 | 2026-06-16 |