Vulnerability-Lookup

VDE-2020-018

Vulnerability from csaf_phoenixcontactgmbhcokg - Published: 2020-06-02 08:42 - Updated: 2020-06-02 08:42

Summary

PHOENIX CONTACT: FL MGUARD, TC MGUARD, TC ROUTER and TC CLOUD CLIENT: PPPD vulnerable to CVE-2020-8597

Notes

Summary: FL MGUARD, TC MGUARD, TC ROUTER and TC CLOUD CLIENT devices are affected by a buffer overflow vulnerability within the PPP service. The PPP service is not active by default, but is used commonly at TC ROUTER, TC CLOUD CLIENT. It is also running in the following FL MGUARD and TC MGUARD configurations: • Mobile data connection • Router mode "Modem" • Router mode "PPPoE" • L2TP over IPsec Malicious PPP peers could try to exploit the vulnerability from remote.

Impact: Attackers may either crash the PPP service or execute code with system permissions.

Remediation: PHOENIX CONTACT strongly recommends updating the devices to the latest firmware if the devices are used in configurations where PPPD is activated. | Article No | Article | Affected Versions | Firmware Update | |-------------:|:------------------------------|:------------------|:---------------------------------------------------------------------| | 2200515 | FL MGUARD RS4000 TX/TX VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2200515/firmware_update) | | 2700197 | FL MGUARD GT/GT | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700197/firmware_update) | | 2700198 | FL MGUARD GT/GT VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700198/firmware_update) | | 2700634 | FL MGUARD RS4000 TX/TX | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700634/firmware_update) | | 2700639 | FL MGUARD SMART2 VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700639/firmware_update) | | 2700640 | FL MGUARD SMART2 | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700640/firmware_update) | | 2700642 | FL MGUARD RS2000 TX/TX VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700642/firmware_update) | | 2700967 | FL MGUARD DELTA TX/TX | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700967/firmware_update) | | 2700968 | FL MGUARD DELTA TX/TX VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700968/firmware_update) | | 2701275 | FL MGUARD PCI4000 VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2701275/firmware_update) | | 2701278 | FL MGUARD PCIE4000 VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2701278/firmware_update) | | 2701875 | FL MGUARD RS2005 TX VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2701875/firmware_update) | | 2701876 | FL MGUARD RS4004 TX/DTX | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2701876/firmware_update) | | 2701877 | FL MGUARD RS4004 TX/DTX VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2701877/firmware_update) | | 2702259 | FL MGUARD RS4000 TX/TX-P | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2702259/firmware_update) | | 2702465 | FL MGUARD RS4000 TX/TX VPN-M | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2702465/firmware_update) | | 2702547 | FL MGUARD CENTERPORT | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2702547/firmware_update) | | 2702831 | FL MGUARD CORE TX VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2702831/firmware_update) | | 2702139 | FL MGUARD RS2000 TX/TX-B | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2702139/firmware_update) | | 1053405 | FL MGUARD SMART2 VPN/K1 | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1053405/firmware_update) | | 1053403 | FL MGUARD RS4000 TX/TX VPN/K1 | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1053403/firmware_update) | | 1073940 | FL MGUARD PCIE4000 VPN/K2 | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1073940/firmware_update) | | 1073943 | FL MGUARD RS4000 VPN/K2 | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1073943/firmware_update) | | 1073944 | FL MGUARD PCI4000 VPN/K2 | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1073944/firmware_update) | | 2903441 | TC MGUARD RS2000 3G VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2903441/firmware_update) | | 2903588 | TC MGUARD RS2000 4G VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2903588/firmware_update) | | 1010462 | TC MGUARD RS2000 4G VZW VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1010462/firmware_update) | | 1010464 | TC MGUARD RS2000 4G ATT VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1010464/firmware_update) | | 2903440 | TC MGUARD RS4000 3G VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2903440/firmware_update) | | 2903586 | TC MGUARD RS4000 4G VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2903586/firmware_update) | | 1010461 | TC MGUARD RS4000 4G VZW VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1010461/firmware_update) | | 1010463 | TC MGUARD RS4000 4G ATT VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1010463/firmware_update) | | 2702528 | TC ROUTER 3002T-4G | <2.05.5 | [Download](http://www.phoenixcontact.net/qr/2702528/firmware_update) | | 2702530 | TC ROUTER 3002T-4G | <2.05.5 | [Download](http://www.phoenixcontact.net/qr/2702530/firmware_update) | | 2702529 | TC ROUTER 2002T-3G | <2.05.5 | [Download](http://www.phoenixcontact.net/qr/2702529/firmware_update) | | 2702531 | TC ROUTER 2002T-3G | <2.05.5 | [Download](http://www.phoenixcontact.net/qr/2702531/firmware_update) | | 2702532 | TC ROUTER 3002T-4G VZW | <2.05.5 | [Download](http://www.phoenixcontact.net/qr/2702532/firmware_update) | | 2702533 | TC ROUTER 3002T-4G ATT | <2.05.5 | [Download](http://www.phoenixcontact.net/qr/2702533/firmware_update) | | 2702886 | TC CLOUD CLIENT 1002-4G | <2.03.19 | [Download](http://www.phoenixcontact.net/qr/2702886/firmware_update) | | 2702887 | TC CLOUD CLIENT 1002-4G VZW | <2.03.19 | [Download](http://www.phoenixcontact.net/qr/2702887/firmware_update) | | 2702888 | TC CLOUD CLIENT 1002-4G ATT | <2.03.19 | [Download](http://www.phoenixcontact.net/qr/2702888/firmware_update) | And all Innominate derivates of FL MGUARD products.

CVE-2020-8597

eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Vendor Fix PHOENIX CONTACT strongly recommends updating the devices to the latest firmware if the devices are used in configurations where PPPD is activated. | Article No | Article | Affected Versions | Firmware Update | |-------------:|:------------------------------|:------------------|:---------------------------------------------------------------------| | 2200515 | FL MGUARD RS4000 TX/TX VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2200515/firmware_update) | | 2700197 | FL MGUARD GT/GT | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700197/firmware_update) | | 2700198 | FL MGUARD GT/GT VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700198/firmware_update) | | 2700634 | FL MGUARD RS4000 TX/TX | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700634/firmware_update) | | 2700639 | FL MGUARD SMART2 VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700639/firmware_update) | | 2700640 | FL MGUARD SMART2 | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700640/firmware_update) | | 2700642 | FL MGUARD RS2000 TX/TX VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700642/firmware_update) | | 2700967 | FL MGUARD DELTA TX/TX | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700967/firmware_update) | | 2700968 | FL MGUARD DELTA TX/TX VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2700968/firmware_update) | | 2701275 | FL MGUARD PCI4000 VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2701275/firmware_update) | | 2701278 | FL MGUARD PCIE4000 VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2701278/firmware_update) | | 2701875 | FL MGUARD RS2005 TX VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2701875/firmware_update) | | 2701876 | FL MGUARD RS4004 TX/DTX | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2701876/firmware_update) | | 2701877 | FL MGUARD RS4004 TX/DTX VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2701877/firmware_update) | | 2702259 | FL MGUARD RS4000 TX/TX-P | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2702259/firmware_update) | | 2702465 | FL MGUARD RS4000 TX/TX VPN-M | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2702465/firmware_update) | | 2702547 | FL MGUARD CENTERPORT | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2702547/firmware_update) | | 2702831 | FL MGUARD CORE TX VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2702831/firmware_update) | | 2702139 | FL MGUARD RS2000 TX/TX-B | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2702139/firmware_update) | | 1053405 | FL MGUARD SMART2 VPN/K1 | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1053405/firmware_update) | | 1053403 | FL MGUARD RS4000 TX/TX VPN/K1 | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1053403/firmware_update) | | 1073940 | FL MGUARD PCIE4000 VPN/K2 | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1073940/firmware_update) | | 1073943 | FL MGUARD RS4000 VPN/K2 | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1073943/firmware_update) | | 1073944 | FL MGUARD PCI4000 VPN/K2 | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1073944/firmware_update) | | 2903441 | TC MGUARD RS2000 3G VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2903441/firmware_update) | | 2903588 | TC MGUARD RS2000 4G VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2903588/firmware_update) | | 1010462 | TC MGUARD RS2000 4G VZW VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1010462/firmware_update) | | 1010464 | TC MGUARD RS2000 4G ATT VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1010464/firmware_update) | | 2903440 | TC MGUARD RS4000 3G VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2903440/firmware_update) | | 2903586 | TC MGUARD RS4000 4G VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/2903586/firmware_update) | | 1010461 | TC MGUARD RS4000 4G VZW VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1010461/firmware_update) | | 1010463 | TC MGUARD RS4000 4G ATT VPN | <8.8.2 | [Download](http://www.phoenixcontact.net/qr/1010463/firmware_update) | | 2702528 | TC ROUTER 3002T-4G | <2.05.5 | [Download](http://www.phoenixcontact.net/qr/2702528/firmware_update) | | 2702530 | TC ROUTER 3002T-4G | <2.05.5 | [Download](http://www.phoenixcontact.net/qr/2702530/firmware_update) | | 2702529 | TC ROUTER 2002T-3G | <2.05.5 | [Download](http://www.phoenixcontact.net/qr/2702529/firmware_update) | | 2702531 | TC ROUTER 2002T-3G | <2.05.5 | [Download](http://www.phoenixcontact.net/qr/2702531/firmware_update) | | 2702532 | TC ROUTER 3002T-4G VZW | <2.05.5 | [Download](http://www.phoenixcontact.net/qr/2702532/firmware_update) | | 2702533 | TC ROUTER 3002T-4G ATT | <2.05.5 | [Download](http://www.phoenixcontact.net/qr/2702533/firmware_update) | | 2702886 | TC CLOUD CLIENT 1002-4G | <2.03.19 | [Download](http://www.phoenixcontact.net/qr/2702886/firmware_update) | | 2702887 | TC CLOUD CLIENT 1002-4G VZW | <2.03.19 | [Download](http://www.phoenixcontact.net/qr/2702887/firmware_update) | | 2702888 | TC CLOUD CLIENT 1002-4G ATT | <2.03.19 | [Download](http://www.phoenixcontact.net/qr/2702888/firmware_update) | And all Innominate derivates of FL MGUARD products.

References

URL

Category

	https://certvde.com/en/advisories/VDE-2020-018/	self
	https://phoenixcontact.csaf-tp.certvde.com/.well-…	self
	https://phoenixcontact.com/psirt	external
	https://certvde.com/en/advisories/vendor/phoenixc…	external

Acknowledgments

CERT@VDE certvde.com

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "organization": "CERT@VDE",
        "summary": "coordination",
        "urls": [
          "https://certvde.com"
        ]
      }
    ],
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-GB",
    "notes": [
      {
        "category": "summary",
        "text": "FL MGUARD, TC MGUARD, TC ROUTER and TC CLOUD CLIENT devices are affected by a buffer overflow vulnerability within the PPP service.\n\nThe PPP service is not active by default, but is used commonly at TC ROUTER, TC CLOUD CLIENT.\nIt is also running in the following FL MGUARD and TC MGUARD configurations:\n\n\u2022 Mobile data connection\n\u2022 Router mode \"Modem\"\n\u2022 Router mode \"PPPoE\"\n\u2022 L2TP over IPsec\n\nMalicious PPP peers could try to exploit the vulnerability from remote.",
        "title": "Summary"
      },
      {
        "category": "description",
        "text": "Attackers may either crash the PPP service or execute code with system permissions.",
        "title": "Impact"
      },
      {
        "category": "description",
        "text": "PHOENIX CONTACT strongly recommends updating the devices to the latest firmware if the devices are used in configurations where PPPD is activated.\n\n|   Article No | Article                       | Affected Versions | Firmware Update                                                      |\n|-------------:|:------------------------------|:------------------|:---------------------------------------------------------------------|\n|      2200515 | FL MGUARD RS4000 TX/TX VPN    | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2200515/firmware_update) |\n|      2700197 | FL MGUARD GT/GT               | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700197/firmware_update) |\n|      2700198 | FL MGUARD GT/GT VPN           | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700198/firmware_update) |\n|      2700634 | FL MGUARD RS4000 TX/TX        | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700634/firmware_update) |\n|      2700639 | FL MGUARD SMART2 VPN          | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700639/firmware_update) |\n|      2700640 | FL MGUARD SMART2              | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700640/firmware_update) |\n|      2700642 | FL MGUARD RS2000 TX/TX VPN    | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700642/firmware_update) |\n|      2700967 | FL MGUARD DELTA TX/TX         | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700967/firmware_update) |\n|      2700968 | FL MGUARD DELTA TX/TX VPN     | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700968/firmware_update) |\n|      2701275 | FL MGUARD PCI4000 VPN         | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2701275/firmware_update) |\n|      2701278 | FL MGUARD PCIE4000 VPN        | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2701278/firmware_update) |\n|      2701875 | FL MGUARD RS2005 TX VPN       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2701875/firmware_update) |\n|      2701876 | FL MGUARD RS4004 TX/DTX       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2701876/firmware_update) |\n|      2701877 | FL MGUARD RS4004 TX/DTX VPN   | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2701877/firmware_update) |\n|      2702259 | FL MGUARD RS4000 TX/TX-P      | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2702259/firmware_update) |\n|      2702465 | FL MGUARD RS4000 TX/TX VPN-M  | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2702465/firmware_update) |\n|      2702547 | FL MGUARD CENTERPORT          | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2702547/firmware_update) |\n|      2702831 | FL MGUARD CORE TX VPN         | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2702831/firmware_update) |\n|      2702139 | FL MGUARD RS2000 TX/TX-B      | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2702139/firmware_update) |\n|      1053405 | FL MGUARD SMART2 VPN/K1       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1053405/firmware_update) |\n|      1053403 | FL MGUARD RS4000 TX/TX VPN/K1 | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1053403/firmware_update) |\n|      1073940 | FL MGUARD PCIE4000 VPN/K2     | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1073940/firmware_update) |\n|      1073943 | FL MGUARD RS4000 VPN/K2       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1073943/firmware_update) |\n|      1073944 | FL MGUARD PCI4000 VPN/K2      | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1073944/firmware_update) |\n|      2903441 | TC MGUARD RS2000 3G VPN       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2903441/firmware_update) |\n|      2903588 | TC MGUARD RS2000 4G VPN       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2903588/firmware_update) |\n|      1010462 | TC MGUARD RS2000 4G VZW VPN   | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1010462/firmware_update) |\n|      1010464 | TC MGUARD RS2000 4G ATT VPN   | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1010464/firmware_update) |\n|      2903440 | TC MGUARD RS4000 3G VPN       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2903440/firmware_update) |\n|      2903586 | TC MGUARD RS4000 4G VPN       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2903586/firmware_update) |\n|      1010461 | TC MGUARD RS4000 4G VZW VPN   | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1010461/firmware_update) |\n|      1010463 | TC MGUARD RS4000 4G ATT VPN   | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1010463/firmware_update) |\n|      2702528 | TC ROUTER 3002T-4G            | \u003c2.05.5           | [Download](http://www.phoenixcontact.net/qr/2702528/firmware_update) |\n|      2702530 | TC ROUTER 3002T-4G            | \u003c2.05.5           | [Download](http://www.phoenixcontact.net/qr/2702530/firmware_update) |\n|      2702529 | TC ROUTER 2002T-3G            | \u003c2.05.5           | [Download](http://www.phoenixcontact.net/qr/2702529/firmware_update) |\n|      2702531 | TC ROUTER 2002T-3G            | \u003c2.05.5           | [Download](http://www.phoenixcontact.net/qr/2702531/firmware_update) |\n|      2702532 | TC ROUTER 3002T-4G VZW        | \u003c2.05.5           | [Download](http://www.phoenixcontact.net/qr/2702532/firmware_update) |\n|      2702533 | TC ROUTER 3002T-4G ATT        | \u003c2.05.5           | [Download](http://www.phoenixcontact.net/qr/2702533/firmware_update) |\n|      2702886 | TC CLOUD CLIENT 1002-4G       | \u003c2.03.19          | [Download](http://www.phoenixcontact.net/qr/2702886/firmware_update) |\n|      2702887 | TC CLOUD CLIENT 1002-4G VZW   | \u003c2.03.19          | [Download](http://www.phoenixcontact.net/qr/2702887/firmware_update) |\n|      2702888 | TC CLOUD CLIENT 1002-4G ATT   | \u003c2.03.19          | [Download](http://www.phoenixcontact.net/qr/2702888/firmware_update) |\n\n\nAnd all Innominate derivates of FL MGUARD products.",
        "title": "Remediation"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "psirt@phoenixcontact.com",
      "name": "Phoenix Contact GmbH \u0026 Co. KG",
      "namespace": "https://phoenixcontact.com/psirt"
    },
    "references": [
      {
        "category": "self",
        "summary": "VDE-2020-018: PHOENIX CONTACT: FL MGUARD, TC MGUARD, TC ROUTER and TC CLOUD CLIENT: PPPD vulnerable to CVE-2020-8597 - HTML",
        "url": "https://certvde.com/en/advisories/VDE-2020-018/"
      },
      {
        "category": "self",
        "summary": "VDE-2020-018: PHOENIX CONTACT: FL MGUARD, TC MGUARD, TC ROUTER and TC CLOUD CLIENT: PPPD vulnerable to CVE-2020-8597 - CSAF",
        "url": "https://phoenixcontact.csaf-tp.certvde.com/.well-known/csaf/white/2020/vde-2020-018.json"
      },
      {
        "category": "external",
        "summary": "Vendor PSIRT",
        "url": "https://phoenixcontact.com/psirt"
      },
      {
        "category": "external",
        "summary": "CERT@VDE Security Advisories for Phoenix Contact GmbH \u0026 Co. KG",
        "url": "https://certvde.com/en/advisories/vendor/phoenixcontact/"
      }
    ],
    "title": "PHOENIX CONTACT: FL MGUARD, TC MGUARD, TC ROUTER and TC CLOUD CLIENT: PPPD vulnerable to CVE-2020-8597",
    "tracking": {
      "aliases": [
        "VDE-2020-018"
      ],
      "current_release_date": "2020-06-02T08:42:00.000Z",
      "generator": {
        "date": "2025-06-12T12:03:15.969Z",
        "engine": {
          "name": "Secvisogram",
          "version": "2.5.27"
        }
      },
      "id": "VDE-2020-018",
      "initial_release_date": "2020-06-02T08:42:00.000Z",
      "revision_history": [
        {
          "date": "2020-06-02T08:42:00.000Z",
          "number": "1.0.0",
          "summary": "Initial revision."
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "FL MGUARD CENTERPORT",
                "product": {
                  "name": "FL MGUARD CENTERPORT",
                  "product_id": "CSAFPID-11001",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702547"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD CORE TX VPN",
                "product": {
                  "name": "FL MGUARD CORE TX VPN",
                  "product_id": "CSAFPID-11002",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702831"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD DELTA TX/TX",
                "product": {
                  "name": "FL MGUARD DELTA TX/TX",
                  "product_id": "CSAFPID-11003",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700967"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD DELTA TX/TX VPN",
                "product": {
                  "name": "FL MGUARD DELTA TX/TX VPN",
                  "product_id": "CSAFPID-11004",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700968"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD GT/GT",
                "product": {
                  "name": "FL MGUARD GT/GT",
                  "product_id": "CSAFPID-11005",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700197"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD GT/GT VPN",
                "product": {
                  "name": "FL MGUARD GT/GT VPN",
                  "product_id": "CSAFPID-11006",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700198"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD PCI4000 VPN",
                "product": {
                  "name": "FL MGUARD PCI4000 VPN",
                  "product_id": "CSAFPID-11007",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2701275"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD PCI4000 VPN/K2",
                "product": {
                  "name": "FL MGUARD PCI4000 VPN/K2",
                  "product_id": "CSAFPID-11008",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1073944"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD PCIE4000 VPN",
                "product": {
                  "name": "FL MGUARD PCIE4000 VPN",
                  "product_id": "CSAFPID-11009",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2701278"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD PCIE4000 VPN/K2",
                "product": {
                  "name": "FL MGUARD PCIE4000 VPN/K2",
                  "product_id": "CSAFPID-11010",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1073940"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS2000 TX/TX-B",
                "product": {
                  "name": "FL MGUARD RS2000 TX/TX-B",
                  "product_id": "CSAFPID-11011",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702139"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS2000 TX/TX VPN",
                "product": {
                  "name": "FL MGUARD RS2000 TX/TX VPN",
                  "product_id": "CSAFPID-11012",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700642"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS2005 TX VPN",
                "product": {
                  "name": "FL MGUARD RS2005 TX VPN",
                  "product_id": "CSAFPID-11013",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2701875"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS4000 TX/TX",
                "product": {
                  "name": "FL MGUARD RS4000 TX/TX",
                  "product_id": "CSAFPID-11014",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700634"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS4000 TX/TX-P",
                "product": {
                  "name": "FL MGUARD RS4000 TX/TX-P",
                  "product_id": "CSAFPID-11015",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702259"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS4000 TX/TX VPN",
                "product": {
                  "name": "FL MGUARD RS4000 TX/TX VPN",
                  "product_id": "CSAFPID-11016",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2200515"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS4000 TX/TX VPN/K1",
                "product": {
                  "name": "FL MGUARD RS4000 TX/TX VPN/K1",
                  "product_id": "CSAFPID-11017",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1053403"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS4000 TX/TX VPN-M",
                "product": {
                  "name": "FL MGUARD RS4000 TX/TX VPN-M",
                  "product_id": "CSAFPID-11018",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702465"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS4000 VPN/K2",
                "product": {
                  "name": "FL MGUARD RS4000 VPN/K2",
                  "product_id": "CSAFPID-11019",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1073943"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS4004 TX/DTX",
                "product": {
                  "name": "FL MGUARD RS4004 TX/DTX",
                  "product_id": "CSAFPID-11020",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2701876"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS4004 TX/DTX VPN",
                "product": {
                  "name": "FL MGUARD RS4004 TX/DTX VPN",
                  "product_id": "CSAFPID-11021",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2701877"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD SMART2",
                "product": {
                  "name": "FL MGUARD SMART2",
                  "product_id": "CSAFPID-11022",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700640"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD SMART2 VPN",
                "product": {
                  "name": "FL MGUARD SMART2 VPN",
                  "product_id": "CSAFPID-11023",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700639"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD SMART2 VPN/K1",
                "product": {
                  "name": "FL MGUARD SMART2 VPN/K1",
                  "product_id": "CSAFPID-11024",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1053405"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC CLOUD CLIENT 1002-4G",
                "product": {
                  "name": "TC CLOUD CLIENT 1002-4G",
                  "product_id": "CSAFPID-11025",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702886"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC CLOUD CLIENT 1002-4G ATT",
                "product": {
                  "name": "TC CLOUD CLIENT 1002-4G ATT",
                  "product_id": "CSAFPID-11026",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702888"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC CLOUD CLIENT 1002-4G VZW",
                "product": {
                  "name": "TC CLOUD CLIENT 1002-4G VZW",
                  "product_id": "CSAFPID-11027",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702887"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS2000 3G VPN",
                "product": {
                  "name": "TC MGUARD RS2000 3G VPN",
                  "product_id": "CSAFPID-11028",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2903441"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS2000 4G ATT VPN",
                "product": {
                  "name": "TC MGUARD RS2000 4G ATT VPN",
                  "product_id": "CSAFPID-11029",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1010464"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS2000 4G VPN",
                "product": {
                  "name": "TC MGUARD RS2000 4G VPN",
                  "product_id": "CSAFPID-11030",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2903588"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS2000 4G VZW VPN",
                "product": {
                  "name": "TC MGUARD RS2000 4G VZW VPN",
                  "product_id": "CSAFPID-11031",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1010462"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS4000 3G VPN",
                "product": {
                  "name": "TC MGUARD RS4000 3G VPN",
                  "product_id": "CSAFPID-11032",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2903440"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS4000 4G ATT VPN",
                "product": {
                  "name": "TC MGUARD RS4000 4G ATT VPN",
                  "product_id": "CSAFPID-11033",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1010463"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS4000 4G VPN",
                "product": {
                  "name": "TC MGUARD RS4000 4G VPN",
                  "product_id": "CSAFPID-11034",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2903586"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS4000 4G VZW VPN",
                "product": {
                  "name": "TC MGUARD RS4000 4G VZW VPN",
                  "product_id": "CSAFPID-11035",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1010461"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC ROUTER 2002T-3G",
                "product": {
                  "name": "TC ROUTER 2002T-3G",
                  "product_id": "CSAFPID-11036",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702529",
                      "2702531"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC ROUTER 3002T-4G",
                "product": {
                  "name": "TC ROUTER 3002T-4G",
                  "product_id": "CSAFPID-11037",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702530",
                      "2702528"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC ROUTER 3002T-4G ATT",
                "product": {
                  "name": "TC ROUTER 3002T-4G ATT",
                  "product_id": "CSAFPID-11038",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702533"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC ROUTER 3002T-4G VZW",
                "product": {
                  "name": "TC ROUTER 3002T-4G VZW",
                  "product_id": "CSAFPID-11039",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702532"
                    ]
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Hardware"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c8.8.2",
                "product": {
                  "name": "Firmware \u003c8.8.2",
                  "product_id": "CSAFPID-21001"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c2.03.19",
                "product": {
                  "name": "Firmware \u003c2.03.19",
                  "product_id": "CSAFPID-21002"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c2.05.5",
                "product": {
                  "name": "Firmware \u003c2.05.5",
                  "product_id": "CSAFPID-21003"
                }
              }
            ],
            "category": "product_family",
            "name": "Firmware"
          }
        ],
        "category": "vendor",
        "name": "Phoenix Contact"
      }
    ],
    "product_groups": [
      {
        "group_id": "CSAFGID-0001",
        "product_ids": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006",
          "CSAFPID-31007",
          "CSAFPID-31008",
          "CSAFPID-31009",
          "CSAFPID-31010",
          "CSAFPID-31011",
          "CSAFPID-31012",
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018",
          "CSAFPID-31019",
          "CSAFPID-31020",
          "CSAFPID-31021",
          "CSAFPID-31022",
          "CSAFPID-31023",
          "CSAFPID-31024",
          "CSAFPID-31025",
          "CSAFPID-31026",
          "CSAFPID-31027",
          "CSAFPID-31028",
          "CSAFPID-31029",
          "CSAFPID-31030",
          "CSAFPID-31031",
          "CSAFPID-31032",
          "CSAFPID-31033",
          "CSAFPID-31034",
          "CSAFPID-31035",
          "CSAFPID-31036",
          "CSAFPID-31037",
          "CSAFPID-31038",
          "CSAFPID-31039"
        ],
        "summary": "Affected products."
      }
    ],
    "relationships": [
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD CENTERPORT",
          "product_id": "CSAFPID-31001"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11001"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD CORE TX VPN",
          "product_id": "CSAFPID-31002"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11002"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD DELTA TX/TX",
          "product_id": "CSAFPID-31003"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11003"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD DELTA TX/TX VPN",
          "product_id": "CSAFPID-31004"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11004"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD GT/GT",
          "product_id": "CSAFPID-31005"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11005"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD GT/GT VPN",
          "product_id": "CSAFPID-31006"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11006"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD PCI4000 VPN",
          "product_id": "CSAFPID-31007"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11007"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD PCI4000 VPN/K2",
          "product_id": "CSAFPID-31008"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11008"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD PCIE4000 VPN",
          "product_id": "CSAFPID-31009"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11009"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD PCIE4000 VPN/K2",
          "product_id": "CSAFPID-31010"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11010"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD RS2000 TX/TX-B",
          "product_id": "CSAFPID-31011"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11011"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD RS2000 TX/TX VPN",
          "product_id": "CSAFPID-31012"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11012"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD RS2005 TX VPN",
          "product_id": "CSAFPID-31013"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11013"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD RS4000 TX/TX",
          "product_id": "CSAFPID-31014"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11014"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD RS4000 TX/TX-P",
          "product_id": "CSAFPID-31015"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11015"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD RS4000 TX/TX VPN",
          "product_id": "CSAFPID-31016"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11016"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD RS4000 TX/TX VPN/K1",
          "product_id": "CSAFPID-31017"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11017"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD RS4000 TX/TX VPN-M",
          "product_id": "CSAFPID-31018"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11018"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD RS4000 VPN/K2",
          "product_id": "CSAFPID-31019"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11019"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD RS4004 TX/DTX",
          "product_id": "CSAFPID-31020"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11020"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD RS4004 TX/DTX VPN",
          "product_id": "CSAFPID-31021"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11021"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD SMART2",
          "product_id": "CSAFPID-31022"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11022"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD SMART2 VPN",
          "product_id": "CSAFPID-31023"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11023"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on FL MGUARD SMART2 VPN/K1",
          "product_id": "CSAFPID-31024"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11024"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c2.03.19 installed on TC CLOUD CLIENT 1002-4G",
          "product_id": "CSAFPID-31025"
        },
        "product_reference": "CSAFPID-21002",
        "relates_to_product_reference": "CSAFPID-11025"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c2.03.19 installed on TC CLOUD CLIENT 1002-4G ATT",
          "product_id": "CSAFPID-31026"
        },
        "product_reference": "CSAFPID-21002",
        "relates_to_product_reference": "CSAFPID-11026"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c2.03.19 installed on TC CLOUD CLIENT 1002-4G VZW",
          "product_id": "CSAFPID-31027"
        },
        "product_reference": "CSAFPID-21002",
        "relates_to_product_reference": "CSAFPID-11027"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on TC MGUARD RS2000 3G VPN",
          "product_id": "CSAFPID-31028"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11028"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on TC MGUARD RS2000 4G ATT VPN",
          "product_id": "CSAFPID-31029"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11029"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on TC MGUARD RS2000 4G VPN",
          "product_id": "CSAFPID-31030"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11030"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on TC MGUARD RS2000 4G VZW VPN",
          "product_id": "CSAFPID-31031"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11031"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on TC MGUARD RS4000 3G VPN",
          "product_id": "CSAFPID-31032"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11032"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on TC MGUARD RS4000 4G ATT VPN",
          "product_id": "CSAFPID-31033"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11033"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on TC MGUARD RS4000 4G VPN",
          "product_id": "CSAFPID-31034"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11034"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.8.2 installed on TC MGUARD RS4000 4G VZW VPN",
          "product_id": "CSAFPID-31035"
        },
        "product_reference": "CSAFPID-21001",
        "relates_to_product_reference": "CSAFPID-11035"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c2.05.5 installed on TC ROUTER 2002T-3G",
          "product_id": "CSAFPID-31036"
        },
        "product_reference": "CSAFPID-21003",
        "relates_to_product_reference": "CSAFPID-11036"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c2.05.5 installed on TC ROUTER 2002T-3G",
          "product_id": "CSAFPID-31037"
        },
        "product_reference": "CSAFPID-21003",
        "relates_to_product_reference": "CSAFPID-11037"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c2.05.5 installed on TC ROUTER 3002T-4G",
          "product_id": "CSAFPID-31038"
        },
        "product_reference": "CSAFPID-21003",
        "relates_to_product_reference": "CSAFPID-11038"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c2.05.5 installed on TC ROUTER 3002T-4G",
          "product_id": "CSAFPID-31039"
        },
        "product_reference": "CSAFPID-21003",
        "relates_to_product_reference": "CSAFPID-11039"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-8597",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "notes": [
        {
          "category": "description",
          "text": "eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.",
          "title": "Vulnerability Description"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006",
          "CSAFPID-31007",
          "CSAFPID-31008",
          "CSAFPID-31009",
          "CSAFPID-31010",
          "CSAFPID-31011",
          "CSAFPID-31012",
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018",
          "CSAFPID-31019",
          "CSAFPID-31020",
          "CSAFPID-31021",
          "CSAFPID-31022",
          "CSAFPID-31023",
          "CSAFPID-31024",
          "CSAFPID-31025",
          "CSAFPID-31026",
          "CSAFPID-31027",
          "CSAFPID-31028",
          "CSAFPID-31029",
          "CSAFPID-31030",
          "CSAFPID-31031",
          "CSAFPID-31032",
          "CSAFPID-31033",
          "CSAFPID-31034",
          "CSAFPID-31035",
          "CSAFPID-31036",
          "CSAFPID-31037",
          "CSAFPID-31038",
          "CSAFPID-31039"
        ]
      },
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "PHOENIX CONTACT strongly recommends updating the devices to the latest firmware if the devices are used in configurations where PPPD is activated.\n\n|   Article No | Article                       | Affected Versions | Firmware Update                                                      |\n|-------------:|:------------------------------|:------------------|:---------------------------------------------------------------------|\n|      2200515 | FL MGUARD RS4000 TX/TX VPN    | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2200515/firmware_update) |\n|      2700197 | FL MGUARD GT/GT               | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700197/firmware_update) |\n|      2700198 | FL MGUARD GT/GT VPN           | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700198/firmware_update) |\n|      2700634 | FL MGUARD RS4000 TX/TX        | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700634/firmware_update) |\n|      2700639 | FL MGUARD SMART2 VPN          | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700639/firmware_update) |\n|      2700640 | FL MGUARD SMART2              | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700640/firmware_update) |\n|      2700642 | FL MGUARD RS2000 TX/TX VPN    | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700642/firmware_update) |\n|      2700967 | FL MGUARD DELTA TX/TX         | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700967/firmware_update) |\n|      2700968 | FL MGUARD DELTA TX/TX VPN     | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2700968/firmware_update) |\n|      2701275 | FL MGUARD PCI4000 VPN         | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2701275/firmware_update) |\n|      2701278 | FL MGUARD PCIE4000 VPN        | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2701278/firmware_update) |\n|      2701875 | FL MGUARD RS2005 TX VPN       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2701875/firmware_update) |\n|      2701876 | FL MGUARD RS4004 TX/DTX       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2701876/firmware_update) |\n|      2701877 | FL MGUARD RS4004 TX/DTX VPN   | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2701877/firmware_update) |\n|      2702259 | FL MGUARD RS4000 TX/TX-P      | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2702259/firmware_update) |\n|      2702465 | FL MGUARD RS4000 TX/TX VPN-M  | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2702465/firmware_update) |\n|      2702547 | FL MGUARD CENTERPORT          | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2702547/firmware_update) |\n|      2702831 | FL MGUARD CORE TX VPN         | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2702831/firmware_update) |\n|      2702139 | FL MGUARD RS2000 TX/TX-B      | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2702139/firmware_update) |\n|      1053405 | FL MGUARD SMART2 VPN/K1       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1053405/firmware_update) |\n|      1053403 | FL MGUARD RS4000 TX/TX VPN/K1 | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1053403/firmware_update) |\n|      1073940 | FL MGUARD PCIE4000 VPN/K2     | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1073940/firmware_update) |\n|      1073943 | FL MGUARD RS4000 VPN/K2       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1073943/firmware_update) |\n|      1073944 | FL MGUARD PCI4000 VPN/K2      | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1073944/firmware_update) |\n|      2903441 | TC MGUARD RS2000 3G VPN       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2903441/firmware_update) |\n|      2903588 | TC MGUARD RS2000 4G VPN       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2903588/firmware_update) |\n|      1010462 | TC MGUARD RS2000 4G VZW VPN   | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1010462/firmware_update) |\n|      1010464 | TC MGUARD RS2000 4G ATT VPN   | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1010464/firmware_update) |\n|      2903440 | TC MGUARD RS4000 3G VPN       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2903440/firmware_update) |\n|      2903586 | TC MGUARD RS4000 4G VPN       | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/2903586/firmware_update) |\n|      1010461 | TC MGUARD RS4000 4G VZW VPN   | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1010461/firmware_update) |\n|      1010463 | TC MGUARD RS4000 4G ATT VPN   | \u003c8.8.2            | [Download](http://www.phoenixcontact.net/qr/1010463/firmware_update) |\n|      2702528 | TC ROUTER 3002T-4G            | \u003c2.05.5           | [Download](http://www.phoenixcontact.net/qr/2702528/firmware_update) |\n|      2702530 | TC ROUTER 3002T-4G            | \u003c2.05.5           | [Download](http://www.phoenixcontact.net/qr/2702530/firmware_update) |\n|      2702529 | TC ROUTER 2002T-3G            | \u003c2.05.5           | [Download](http://www.phoenixcontact.net/qr/2702529/firmware_update) |\n|      2702531 | TC ROUTER 2002T-3G            | \u003c2.05.5           | [Download](http://www.phoenixcontact.net/qr/2702531/firmware_update) |\n|      2702532 | TC ROUTER 3002T-4G VZW        | \u003c2.05.5           | [Download](http://www.phoenixcontact.net/qr/2702532/firmware_update) |\n|      2702533 | TC ROUTER 3002T-4G ATT        | \u003c2.05.5           | [Download](http://www.phoenixcontact.net/qr/2702533/firmware_update) |\n|      2702886 | TC CLOUD CLIENT 1002-4G       | \u003c2.03.19          | [Download](http://www.phoenixcontact.net/qr/2702886/firmware_update) |\n|      2702887 | TC CLOUD CLIENT 1002-4G VZW   | \u003c2.03.19          | [Download](http://www.phoenixcontact.net/qr/2702887/firmware_update) |\n|      2702888 | TC CLOUD CLIENT 1002-4G ATT   | \u003c2.03.19          | [Download](http://www.phoenixcontact.net/qr/2702888/firmware_update) |\n\n\nAnd all Innominate derivates of FL MGUARD products.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 9.8,
            "environmentalSeverity": "CRITICAL",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 9.8,
            "temporalSeverity": "CRITICAL",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006",
            "CSAFPID-31007",
            "CSAFPID-31008",
            "CSAFPID-31009",
            "CSAFPID-31010",
            "CSAFPID-31011",
            "CSAFPID-31012",
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018",
            "CSAFPID-31019",
            "CSAFPID-31020",
            "CSAFPID-31021",
            "CSAFPID-31022",
            "CSAFPID-31023",
            "CSAFPID-31024",
            "CSAFPID-31025",
            "CSAFPID-31026",
            "CSAFPID-31027",
            "CSAFPID-31028",
            "CSAFPID-31029",
            "CSAFPID-31030",
            "CSAFPID-31031",
            "CSAFPID-31032",
            "CSAFPID-31033",
            "CSAFPID-31034",
            "CSAFPID-31035",
            "CSAFPID-31036",
            "CSAFPID-31037",
            "CSAFPID-31038",
            "CSAFPID-31039"
          ]
        }
      ],
      "title": "CVE-2020-8597"
    }
  ]
}

CVE-2020-8597 (GCVE-0-2020-8597)

Vulnerability from cvelistv5 – Published: 2020-02-03 22:58 – Updated: 2025-12-03 15:15

Summary

eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.

Severity ?

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

Assigner

mitre

References

URL

Tags

	https://github.com/paulusmack/ppp/commit/8d7970b8…	x_refsource_MISC
	https://lists.debian.org/debian-lts-announce/2020…	mailing-listx_refsource_MLIST
	https://www.debian.org/security/2020/dsa-4632	vendor-advisoryx_refsource_DEBIAN
	https://access.redhat.com/errata/RHSA-2020:0631	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2020:0634	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2020:0633	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2020:0630	vendor-advisoryx_refsource_REDHAT
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	https://usn.ubuntu.com/4288-1/	vendor-advisoryx_refsource_UBUNTU
	https://www.kb.cert.org/vuls/id/782301	third-party-advisoryx_refsource_CERT-VN
	http://seclists.org/fulldisclosure/2020/Mar/6	mailing-listx_refsource_FULLDISC
	https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
	http://packetstormsecurity.com/files/156662/pppd-…	x_refsource_MISC
	https://www.synology.com/security/advisory/Synolo…	x_refsource_CONFIRM
	https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
	https://security.netapp.com/advisory/ntap-2020031…	x_refsource_CONFIRM
	https://security.gentoo.org/glsa/202003-19	vendor-advisoryx_refsource_GENTOO
	https://usn.ubuntu.com/4288-2/	vendor-advisoryx_refsource_UBUNTU
	http://packetstormsecurity.com/files/156802/pppd-…	x_refsource_MISC
	https://kb.netgear.com/000061806/Security-Advisor…	x_refsource_CONFIRM
	https://cert-portal.siemens.com/productcert/pdf/s…	x_refsource_MISC
	https://us-cert.cisa.gov/ics/advisories/icsa-20-224-04	x_refsource_MISC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T10:03:46.256Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/paulusmack/ppp/commit/8d7970b8f3db727fe798b65f3377fe6787575426"
          },
          {
            "name": "[debian-lts-announce] 20200209 [SECURITY] [DLA 2097-1] ppp security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2020/02/msg00005.html"
          },
          {
            "name": "DSA-4632",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2020/dsa-4632"
          },
          {
            "name": "RHSA-2020:0631",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2020:0631"
          },
          {
            "name": "RHSA-2020:0634",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2020:0634"
          },
          {
            "name": "RHSA-2020:0633",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2020:0633"
          },
          {
            "name": "RHSA-2020:0630",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2020:0630"
          },
          {
            "name": "openSUSE-SU-2020:0286",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00006.html"
          },
          {
            "name": "USN-4288-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4288-1/"
          },
          {
            "name": "VU#782301",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "https://www.kb.cert.org/vuls/id/782301"
          },
          {
            "name": "20200306 Buffer overflow in pppd - CVE-2020-8597",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2020/Mar/6"
          },
          {
            "name": "FEDORA-2020-571091c70b",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UNJNHWOO4XF73M2W56ILZUY4JQG3JXIR/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/156662/pppd-2.4.8-Buffer-Overflow.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.synology.com/security/advisory/Synology_SA_20_02"
          },
          {
            "name": "FEDORA-2020-4304397fe0",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YOFDAIOWSWPG732ASYUZNINMXDHY4APE/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20200313-0004/"
          },
          {
            "name": "GLSA-202003-19",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202003-19"
          },
          {
            "name": "USN-4288-2",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4288-2/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/156802/pppd-2.4.8-Buffer-Overflow.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://kb.netgear.com/000061806/Security-Advisory-for-Unauthenticated-Remote-Buffer-Overflow-Attack-in-PPPD-on-WAC510-PSV-2020-0136"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-809841.pdf"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-224-04"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 9.8,
              "baseSeverity": "CRITICAL",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2020-8597",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-12-03T15:15:47.800954Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-120",
                "description": "CWE-120 Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-12-03T15:15:50.472Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-08-11T18:06:00.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/paulusmack/ppp/commit/8d7970b8f3db727fe798b65f3377fe6787575426"
        },
        {
          "name": "[debian-lts-announce] 20200209 [SECURITY] [DLA 2097-1] ppp security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2020/02/msg00005.html"
        },
        {
          "name": "DSA-4632",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2020/dsa-4632"
        },
        {
          "name": "RHSA-2020:0631",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2020:0631"
        },
        {
          "name": "RHSA-2020:0634",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2020:0634"
        },
        {
          "name": "RHSA-2020:0633",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2020:0633"
        },
        {
          "name": "RHSA-2020:0630",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2020:0630"
        },
        {
          "name": "openSUSE-SU-2020:0286",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00006.html"
        },
        {
          "name": "USN-4288-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4288-1/"
        },
        {
          "name": "VU#782301",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "https://www.kb.cert.org/vuls/id/782301"
        },
        {
          "name": "20200306 Buffer overflow in pppd - CVE-2020-8597",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2020/Mar/6"
        },
        {
          "name": "FEDORA-2020-571091c70b",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UNJNHWOO4XF73M2W56ILZUY4JQG3JXIR/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/156662/pppd-2.4.8-Buffer-Overflow.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.synology.com/security/advisory/Synology_SA_20_02"
        },
        {
          "name": "FEDORA-2020-4304397fe0",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YOFDAIOWSWPG732ASYUZNINMXDHY4APE/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20200313-0004/"
        },
        {
          "name": "GLSA-202003-19",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202003-19"
        },
        {
          "name": "USN-4288-2",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4288-2/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/156802/pppd-2.4.8-Buffer-Overflow.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://kb.netgear.com/000061806/Security-Advisory-for-Unauthenticated-Remote-Buffer-Overflow-Attack-in-PPPD-on-WAC510-PSV-2020-0136"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-809841.pdf"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-224-04"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2020-8597",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/paulusmack/ppp/commit/8d7970b8f3db727fe798b65f3377fe6787575426",
              "refsource": "MISC",
              "url": "https://github.com/paulusmack/ppp/commit/8d7970b8f3db727fe798b65f3377fe6787575426"
            },
            {
              "name": "[debian-lts-announce] 20200209 [SECURITY] [DLA 2097-1] ppp security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2020/02/msg00005.html"
            },
            {
              "name": "DSA-4632",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2020/dsa-4632"
            },
            {
              "name": "RHSA-2020:0631",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2020:0631"
            },
            {
              "name": "RHSA-2020:0634",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2020:0634"
            },
            {
              "name": "RHSA-2020:0633",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2020:0633"
            },
            {
              "name": "RHSA-2020:0630",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2020:0630"
            },
            {
              "name": "openSUSE-SU-2020:0286",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00006.html"
            },
            {
              "name": "USN-4288-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4288-1/"
            },
            {
              "name": "VU#782301",
              "refsource": "CERT-VN",
              "url": "https://www.kb.cert.org/vuls/id/782301"
            },
            {
              "name": "20200306 Buffer overflow in pppd - CVE-2020-8597",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2020/Mar/6"
            },
            {
              "name": "FEDORA-2020-571091c70b",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UNJNHWOO4XF73M2W56ILZUY4JQG3JXIR/"
            },
            {
              "name": "http://packetstormsecurity.com/files/156662/pppd-2.4.8-Buffer-Overflow.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/156662/pppd-2.4.8-Buffer-Overflow.html"
            },
            {
              "name": "https://www.synology.com/security/advisory/Synology_SA_20_02",
              "refsource": "CONFIRM",
              "url": "https://www.synology.com/security/advisory/Synology_SA_20_02"
            },
            {
              "name": "FEDORA-2020-4304397fe0",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YOFDAIOWSWPG732ASYUZNINMXDHY4APE/"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20200313-0004/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20200313-0004/"
            },
            {
              "name": "GLSA-202003-19",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202003-19"
            },
            {
              "name": "USN-4288-2",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4288-2/"
            },
            {
              "name": "http://packetstormsecurity.com/files/156802/pppd-2.4.8-Buffer-Overflow.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/156802/pppd-2.4.8-Buffer-Overflow.html"
            },
            {
              "name": "https://kb.netgear.com/000061806/Security-Advisory-for-Unauthenticated-Remote-Buffer-Overflow-Attack-in-PPPD-on-WAC510-PSV-2020-0136",
              "refsource": "CONFIRM",
              "url": "https://kb.netgear.com/000061806/Security-Advisory-for-Unauthenticated-Remote-Buffer-Overflow-Attack-in-PPPD-on-WAC510-PSV-2020-0136"
            },
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-809841.pdf",
              "refsource": "MISC",
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-809841.pdf"
            },
            {
              "name": "https://us-cert.cisa.gov/ics/advisories/icsa-20-224-04",
              "refsource": "MISC",
              "url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-224-04"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2020-8597",
    "datePublished": "2020-02-03T22:58:21.000Z",
    "dateReserved": "2020-02-03T00:00:00.000Z",
    "dateUpdated": "2025-12-03T15:15:50.472Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

VDE-2020-018

CVE-2020-8597 (GCVE-0-2020-8597)

Tags

Sightings

Nomenclature