Denial of Service Vulnerability in HTTP Service on Product by Vendor
CVE-2025-2813

7.5HIGH

Key Information:

Vendor: Phoenix Contact
Status: Axl F Bk Pn Tps; Axl F Bk Pn Tps Xc; Axl F Bk Pn (discontinued); Axl F Bk Pn Xc (discontinued)
Vendor: CVE Published:; 31 July 2025

🔔 Create Phoenix Contact Vulnerability Alert

What is CVE-2025-2813?

An unprotected HTTP service on port 80 is susceptible to exploitation by unauthenticated remote attackers, who can flood the server with a high volume of requests. This excessive traffic can lead to significant service disruptions, rendering the application inaccessible to legitimate users. It is crucial for organizations using the affected product to implement adequate security measures to mitigate this risk and ensure continued service availability.

Affected Version(s)

AXL F BK EIP 0.0 <= 1.30

AXL F BK EIP EF 0.0 <= 1.30

AXL F BK EIP XC 0.0 <= 1.30

References

https://certvde.com/en/advisories/VDE-2025-029/

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 31, 2025
Vulnerability Reserved
Mar 26, 2025

JSON