Vulnerability-Lookup

VDE-2024-039

Vulnerability from csaf_phoenixcontactgmbhcokg - Published: 2024-09-10 10:00 - Updated: 2025-08-27 10:00

Summary

Phoenix Contact: Multiple Vulnerabilities in mGuard devices

Severity

High

Notes

Summary: Confidential data in HTTP query string of user requests. Incomplete sanitation of user input in administrative web interface.

Impact: Attackers can gain knowledge of confidential user data. Attackers can escalate their privileges on the system. Attackers can trigger covert misbehavior within several services.

Mitigation: Access to the administrative interfaces should be granted only to trustworthy users.

Remediation: Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes these vulnerabilities.

General Recommendation: For general information and recommendations on security measures refer to the [mGuard documentation](https://help.mguard.com/en/documentation)

Product Description: mGuards are industrial routers and security appliances

CVE-2024-7698

A low privileged remote attacker can get access to CSRF tokens of higher privileged users which can be abused to mount CSRF attacks.

5.7 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

CWE-201 - Insertion of Sensitive Information Into Sent Data

Mitigation Read access to the device via administrative interfaces should be granted only to trustworthy users.

Vendor Fix Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.

Affected products

Fixed 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—
Unresolved product id: CSAFPID-32007		—
Unresolved product id: CSAFPID-32008		—
Unresolved product id: CSAFPID-32009		—
Unresolved product id: CSAFPID-32010		—
Unresolved product id: CSAFPID-32011		—
Unresolved product id: CSAFPID-32012		—
Unresolved product id: CSAFPID-32013		—
Unresolved product id: CSAFPID-32014		—
Unresolved product id: CSAFPID-32015		—
Unresolved product id: CSAFPID-32016		—
Unresolved product id: CSAFPID-32017		—
Unresolved product id: CSAFPID-32018		—
Unresolved product id: CSAFPID-32019		—
Unresolved product id: CSAFPID-32020		—
Unresolved product id: CSAFPID-32021		—
Unresolved product id: CSAFPID-32022		—
Unresolved product id: CSAFPID-32023		—
Unresolved product id: CSAFPID-32024		—
Unresolved product id: CSAFPID-32025		—
Unresolved product id: CSAFPID-32026		—
Unresolved product id: CSAFPID-32027		—
Unresolved product id: CSAFPID-32028		—
Unresolved product id: CSAFPID-32029		—
Unresolved product id: CSAFPID-32030		—
Unresolved product id: CSAFPID-32031		—
Unresolved product id: CSAFPID-32032		—
Unresolved product id: CSAFPID-32033		—
Unresolved product id: CSAFPID-32034		—
Unresolved product id: CSAFPID-32035		—
Unresolved product id: CSAFPID-32036		—
Unresolved product id: CSAFPID-32037		—

Known affected 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—
Unresolved product id: CSAFPID-31007		—
Unresolved product id: CSAFPID-31008		—
Unresolved product id: CSAFPID-31009		—
Unresolved product id: CSAFPID-31010		—
Unresolved product id: CSAFPID-31011		—
Unresolved product id: CSAFPID-31012		—
Unresolved product id: CSAFPID-31013		—
Unresolved product id: CSAFPID-31014		—
Unresolved product id: CSAFPID-31015		—
Unresolved product id: CSAFPID-31016		—
Unresolved product id: CSAFPID-31017		—
Unresolved product id: CSAFPID-31018		—
Unresolved product id: CSAFPID-31019		—
Unresolved product id: CSAFPID-31020		—
Unresolved product id: CSAFPID-31021		—
Unresolved product id: CSAFPID-31022		—
Unresolved product id: CSAFPID-31023		—
Unresolved product id: CSAFPID-31024		—
Unresolved product id: CSAFPID-31025		—
Unresolved product id: CSAFPID-31026		—
Unresolved product id: CSAFPID-31027		—
Unresolved product id: CSAFPID-31028		—
Unresolved product id: CSAFPID-31029		—
Unresolved product id: CSAFPID-31030		—
Unresolved product id: CSAFPID-31031		—
Unresolved product id: CSAFPID-31032		—
Unresolved product id: CSAFPID-31033		—
Unresolved product id: CSAFPID-31034		—
Unresolved product id: CSAFPID-31035		—
Unresolved product id: CSAFPID-31036		—
Unresolved product id: CSAFPID-31037		—

CVE-2024-7699

An low privileged remote attacker can execute OS commands with root privileges due to improper neutralization of special elements in user data.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Mitigation Access to the administrative interfaces should be granted only to trustworthy users.

Vendor Fix Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.

Affected products

Fixed 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—
Unresolved product id: CSAFPID-32007		—
Unresolved product id: CSAFPID-32008		—
Unresolved product id: CSAFPID-32009		—
Unresolved product id: CSAFPID-32010		—
Unresolved product id: CSAFPID-32011		—
Unresolved product id: CSAFPID-32012		—
Unresolved product id: CSAFPID-32013		—
Unresolved product id: CSAFPID-32014		—
Unresolved product id: CSAFPID-32015		—
Unresolved product id: CSAFPID-32016		—
Unresolved product id: CSAFPID-32017		—
Unresolved product id: CSAFPID-32018		—
Unresolved product id: CSAFPID-32019		—
Unresolved product id: CSAFPID-32020		—
Unresolved product id: CSAFPID-32021		—
Unresolved product id: CSAFPID-32022		—
Unresolved product id: CSAFPID-32023		—
Unresolved product id: CSAFPID-32024		—
Unresolved product id: CSAFPID-32025		—
Unresolved product id: CSAFPID-32026		—
Unresolved product id: CSAFPID-32027		—
Unresolved product id: CSAFPID-32028		—
Unresolved product id: CSAFPID-32029		—
Unresolved product id: CSAFPID-32030		—
Unresolved product id: CSAFPID-32031		—
Unresolved product id: CSAFPID-32032		—
Unresolved product id: CSAFPID-32033		—
Unresolved product id: CSAFPID-32034		—
Unresolved product id: CSAFPID-32035		—
Unresolved product id: CSAFPID-32036		—
Unresolved product id: CSAFPID-32037		—

Known affected 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—
Unresolved product id: CSAFPID-31007		—
Unresolved product id: CSAFPID-31008		—
Unresolved product id: CSAFPID-31009		—
Unresolved product id: CSAFPID-31010		—
Unresolved product id: CSAFPID-31011		—
Unresolved product id: CSAFPID-31012		—
Unresolved product id: CSAFPID-31013		—
Unresolved product id: CSAFPID-31014		—
Unresolved product id: CSAFPID-31015		—
Unresolved product id: CSAFPID-31016		—
Unresolved product id: CSAFPID-31017		—
Unresolved product id: CSAFPID-31018		—
Unresolved product id: CSAFPID-31019		—
Unresolved product id: CSAFPID-31020		—
Unresolved product id: CSAFPID-31021		—
Unresolved product id: CSAFPID-31022		—
Unresolved product id: CSAFPID-31023		—
Unresolved product id: CSAFPID-31024		—
Unresolved product id: CSAFPID-31025		—
Unresolved product id: CSAFPID-31026		—
Unresolved product id: CSAFPID-31027		—
Unresolved product id: CSAFPID-31028		—
Unresolved product id: CSAFPID-31029		—
Unresolved product id: CSAFPID-31030		—
Unresolved product id: CSAFPID-31031		—
Unresolved product id: CSAFPID-31032		—
Unresolved product id: CSAFPID-31033		—
Unresolved product id: CSAFPID-31034		—
Unresolved product id: CSAFPID-31035		—
Unresolved product id: CSAFPID-31036		—
Unresolved product id: CSAFPID-31037		—

CVE-2024-43384

A low privileged remote attacker can gain the root password due to improper removal of sensitive information before storage or transfer.

8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CWE-212 - Improper Removal of Sensitive Information Before Storage or Transfer

Mitigation Read access to the device via administrative interfaces should be granted only to trustworthy users.

Vendor Fix Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.

Affected products

Fixed 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—
Unresolved product id: CSAFPID-32007		—
Unresolved product id: CSAFPID-32008		—
Unresolved product id: CSAFPID-32009		—
Unresolved product id: CSAFPID-32010		—
Unresolved product id: CSAFPID-32011		—
Unresolved product id: CSAFPID-32012		—
Unresolved product id: CSAFPID-32013		—
Unresolved product id: CSAFPID-32014		—
Unresolved product id: CSAFPID-32015		—
Unresolved product id: CSAFPID-32016		—
Unresolved product id: CSAFPID-32017		—
Unresolved product id: CSAFPID-32018		—
Unresolved product id: CSAFPID-32019		—
Unresolved product id: CSAFPID-32020		—
Unresolved product id: CSAFPID-32021		—
Unresolved product id: CSAFPID-32022		—
Unresolved product id: CSAFPID-32023		—
Unresolved product id: CSAFPID-32024		—
Unresolved product id: CSAFPID-32025		—
Unresolved product id: CSAFPID-32026		—
Unresolved product id: CSAFPID-32027		—
Unresolved product id: CSAFPID-32028		—
Unresolved product id: CSAFPID-32029		—
Unresolved product id: CSAFPID-32030		—
Unresolved product id: CSAFPID-32031		—
Unresolved product id: CSAFPID-32032		—
Unresolved product id: CSAFPID-32033		—
Unresolved product id: CSAFPID-32034		—
Unresolved product id: CSAFPID-32035		—
Unresolved product id: CSAFPID-32036		—
Unresolved product id: CSAFPID-32037		—

Known affected 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—
Unresolved product id: CSAFPID-31007		—
Unresolved product id: CSAFPID-31008		—
Unresolved product id: CSAFPID-31009		—
Unresolved product id: CSAFPID-31010		—
Unresolved product id: CSAFPID-31011		—
Unresolved product id: CSAFPID-31012		—
Unresolved product id: CSAFPID-31013		—
Unresolved product id: CSAFPID-31014		—
Unresolved product id: CSAFPID-31015		—
Unresolved product id: CSAFPID-31016		—
Unresolved product id: CSAFPID-31017		—
Unresolved product id: CSAFPID-31018		—
Unresolved product id: CSAFPID-31019		—
Unresolved product id: CSAFPID-31020		—
Unresolved product id: CSAFPID-31021		—
Unresolved product id: CSAFPID-31022		—
Unresolved product id: CSAFPID-31023		—
Unresolved product id: CSAFPID-31024		—
Unresolved product id: CSAFPID-31025		—
Unresolved product id: CSAFPID-31026		—
Unresolved product id: CSAFPID-31027		—
Unresolved product id: CSAFPID-31028		—
Unresolved product id: CSAFPID-31029		—
Unresolved product id: CSAFPID-31030		—
Unresolved product id: CSAFPID-31031		—
Unresolved product id: CSAFPID-31032		—
Unresolved product id: CSAFPID-31033		—
Unresolved product id: CSAFPID-31034		—
Unresolved product id: CSAFPID-31035		—
Unresolved product id: CSAFPID-31036		—
Unresolved product id: CSAFPID-31037		—

CVE-2024-43385

A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Mitigation Access to the administrative interfaces should be granted only to trustworthy users.

Vendor Fix Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.

Affected products

Fixed 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—
Unresolved product id: CSAFPID-32007		—
Unresolved product id: CSAFPID-32008		—
Unresolved product id: CSAFPID-32009		—
Unresolved product id: CSAFPID-32010		—
Unresolved product id: CSAFPID-32011		—
Unresolved product id: CSAFPID-32012		—
Unresolved product id: CSAFPID-32013		—
Unresolved product id: CSAFPID-32014		—
Unresolved product id: CSAFPID-32015		—
Unresolved product id: CSAFPID-32016		—
Unresolved product id: CSAFPID-32017		—
Unresolved product id: CSAFPID-32018		—
Unresolved product id: CSAFPID-32019		—
Unresolved product id: CSAFPID-32020		—
Unresolved product id: CSAFPID-32021		—
Unresolved product id: CSAFPID-32022		—
Unresolved product id: CSAFPID-32023		—
Unresolved product id: CSAFPID-32024		—
Unresolved product id: CSAFPID-32025		—
Unresolved product id: CSAFPID-32026		—
Unresolved product id: CSAFPID-32027		—
Unresolved product id: CSAFPID-32028		—
Unresolved product id: CSAFPID-32029		—
Unresolved product id: CSAFPID-32030		—
Unresolved product id: CSAFPID-32031		—
Unresolved product id: CSAFPID-32032		—
Unresolved product id: CSAFPID-32033		—
Unresolved product id: CSAFPID-32034		—
Unresolved product id: CSAFPID-32035		—
Unresolved product id: CSAFPID-32036		—
Unresolved product id: CSAFPID-32037		—

Known affected 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—
Unresolved product id: CSAFPID-31007		—
Unresolved product id: CSAFPID-31008		—
Unresolved product id: CSAFPID-31009		—
Unresolved product id: CSAFPID-31010		—
Unresolved product id: CSAFPID-31011		—
Unresolved product id: CSAFPID-31012		—
Unresolved product id: CSAFPID-31013		—
Unresolved product id: CSAFPID-31014		—
Unresolved product id: CSAFPID-31015		—
Unresolved product id: CSAFPID-31016		—
Unresolved product id: CSAFPID-31017		—
Unresolved product id: CSAFPID-31018		—
Unresolved product id: CSAFPID-31019		—
Unresolved product id: CSAFPID-31020		—
Unresolved product id: CSAFPID-31021		—
Unresolved product id: CSAFPID-31022		—
Unresolved product id: CSAFPID-31023		—
Unresolved product id: CSAFPID-31024		—
Unresolved product id: CSAFPID-31025		—
Unresolved product id: CSAFPID-31026		—
Unresolved product id: CSAFPID-31027		—
Unresolved product id: CSAFPID-31028		—
Unresolved product id: CSAFPID-31029		—
Unresolved product id: CSAFPID-31030		—
Unresolved product id: CSAFPID-31031		—
Unresolved product id: CSAFPID-31032		—
Unresolved product id: CSAFPID-31033		—
Unresolved product id: CSAFPID-31034		—
Unresolved product id: CSAFPID-31035		—
Unresolved product id: CSAFPID-31036		—
Unresolved product id: CSAFPID-31037		—

CVE-2024-43386

A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in mGuard devices.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Mitigation Access to the administrative interfaces should be granted only to trustworthy users.

Vendor Fix Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.

Affected products

Fixed 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—
Unresolved product id: CSAFPID-32007		—
Unresolved product id: CSAFPID-32008		—
Unresolved product id: CSAFPID-32009		—
Unresolved product id: CSAFPID-32010		—
Unresolved product id: CSAFPID-32011		—
Unresolved product id: CSAFPID-32012		—
Unresolved product id: CSAFPID-32013		—
Unresolved product id: CSAFPID-32014		—
Unresolved product id: CSAFPID-32015		—
Unresolved product id: CSAFPID-32016		—
Unresolved product id: CSAFPID-32017		—
Unresolved product id: CSAFPID-32018		—
Unresolved product id: CSAFPID-32019		—
Unresolved product id: CSAFPID-32020		—
Unresolved product id: CSAFPID-32021		—
Unresolved product id: CSAFPID-32022		—
Unresolved product id: CSAFPID-32023		—
Unresolved product id: CSAFPID-32024		—
Unresolved product id: CSAFPID-32025		—
Unresolved product id: CSAFPID-32026		—
Unresolved product id: CSAFPID-32027		—
Unresolved product id: CSAFPID-32028		—
Unresolved product id: CSAFPID-32029		—
Unresolved product id: CSAFPID-32030		—
Unresolved product id: CSAFPID-32031		—
Unresolved product id: CSAFPID-32032		—
Unresolved product id: CSAFPID-32033		—
Unresolved product id: CSAFPID-32034		—
Unresolved product id: CSAFPID-32035		—
Unresolved product id: CSAFPID-32036		—
Unresolved product id: CSAFPID-32037		—

Known affected 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—
Unresolved product id: CSAFPID-31007		—
Unresolved product id: CSAFPID-31008		—
Unresolved product id: CSAFPID-31009		—
Unresolved product id: CSAFPID-31010		—
Unresolved product id: CSAFPID-31011		—
Unresolved product id: CSAFPID-31012		—
Unresolved product id: CSAFPID-31013		—
Unresolved product id: CSAFPID-31014		—
Unresolved product id: CSAFPID-31015		—
Unresolved product id: CSAFPID-31016		—
Unresolved product id: CSAFPID-31017		—
Unresolved product id: CSAFPID-31018		—
Unresolved product id: CSAFPID-31019		—
Unresolved product id: CSAFPID-31020		—
Unresolved product id: CSAFPID-31021		—
Unresolved product id: CSAFPID-31022		—
Unresolved product id: CSAFPID-31023		—
Unresolved product id: CSAFPID-31024		—
Unresolved product id: CSAFPID-31025		—
Unresolved product id: CSAFPID-31026		—
Unresolved product id: CSAFPID-31027		—
Unresolved product id: CSAFPID-31028		—
Unresolved product id: CSAFPID-31029		—
Unresolved product id: CSAFPID-31030		—
Unresolved product id: CSAFPID-31031		—
Unresolved product id: CSAFPID-31032		—
Unresolved product id: CSAFPID-31033		—
Unresolved product id: CSAFPID-31034		—
Unresolved product id: CSAFPID-31035		—
Unresolved product id: CSAFPID-31036		—
Unresolved product id: CSAFPID-31037		—

CVE-2024-43387

A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Mitigation Access to the administrative interfaces should be granted only to trustworthy users.

Vendor Fix Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.

Affected products

Fixed 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—
Unresolved product id: CSAFPID-32007		—
Unresolved product id: CSAFPID-32008		—
Unresolved product id: CSAFPID-32009		—
Unresolved product id: CSAFPID-32010		—
Unresolved product id: CSAFPID-32011		—
Unresolved product id: CSAFPID-32012		—
Unresolved product id: CSAFPID-32013		—
Unresolved product id: CSAFPID-32014		—
Unresolved product id: CSAFPID-32015		—
Unresolved product id: CSAFPID-32016		—
Unresolved product id: CSAFPID-32017		—
Unresolved product id: CSAFPID-32018		—
Unresolved product id: CSAFPID-32019		—
Unresolved product id: CSAFPID-32020		—
Unresolved product id: CSAFPID-32021		—
Unresolved product id: CSAFPID-32022		—
Unresolved product id: CSAFPID-32023		—
Unresolved product id: CSAFPID-32024		—
Unresolved product id: CSAFPID-32025		—
Unresolved product id: CSAFPID-32026		—
Unresolved product id: CSAFPID-32027		—
Unresolved product id: CSAFPID-32028		—
Unresolved product id: CSAFPID-32029		—
Unresolved product id: CSAFPID-32030		—
Unresolved product id: CSAFPID-32031		—
Unresolved product id: CSAFPID-32032		—
Unresolved product id: CSAFPID-32033		—
Unresolved product id: CSAFPID-32034		—
Unresolved product id: CSAFPID-32035		—
Unresolved product id: CSAFPID-32036		—
Unresolved product id: CSAFPID-32037		—

Known affected 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—
Unresolved product id: CSAFPID-31007		—
Unresolved product id: CSAFPID-31008		—
Unresolved product id: CSAFPID-31009		—
Unresolved product id: CSAFPID-31010		—
Unresolved product id: CSAFPID-31011		—
Unresolved product id: CSAFPID-31012		—
Unresolved product id: CSAFPID-31013		—
Unresolved product id: CSAFPID-31014		—
Unresolved product id: CSAFPID-31015		—
Unresolved product id: CSAFPID-31016		—
Unresolved product id: CSAFPID-31017		—
Unresolved product id: CSAFPID-31018		—
Unresolved product id: CSAFPID-31019		—
Unresolved product id: CSAFPID-31020		—
Unresolved product id: CSAFPID-31021		—
Unresolved product id: CSAFPID-31022		—
Unresolved product id: CSAFPID-31023		—
Unresolved product id: CSAFPID-31024		—
Unresolved product id: CSAFPID-31025		—
Unresolved product id: CSAFPID-31026		—
Unresolved product id: CSAFPID-31027		—
Unresolved product id: CSAFPID-31028		—
Unresolved product id: CSAFPID-31029		—
Unresolved product id: CSAFPID-31030		—
Unresolved product id: CSAFPID-31031		—
Unresolved product id: CSAFPID-31032		—
Unresolved product id: CSAFPID-31033		—
Unresolved product id: CSAFPID-31034		—
Unresolved product id: CSAFPID-31035		—
Unresolved product id: CSAFPID-31036		—
Unresolved product id: CSAFPID-31037		—

CVE-2024-43388

A low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Mitigation Access to the administrative interfaces should be granted only to trustworthy users.

Vendor Fix Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.

Affected products

Fixed 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—
Unresolved product id: CSAFPID-32007		—
Unresolved product id: CSAFPID-32008		—
Unresolved product id: CSAFPID-32009		—
Unresolved product id: CSAFPID-32010		—
Unresolved product id: CSAFPID-32011		—
Unresolved product id: CSAFPID-32012		—
Unresolved product id: CSAFPID-32013		—
Unresolved product id: CSAFPID-32014		—
Unresolved product id: CSAFPID-32015		—
Unresolved product id: CSAFPID-32016		—
Unresolved product id: CSAFPID-32017		—
Unresolved product id: CSAFPID-32018		—
Unresolved product id: CSAFPID-32019		—
Unresolved product id: CSAFPID-32020		—
Unresolved product id: CSAFPID-32021		—
Unresolved product id: CSAFPID-32022		—
Unresolved product id: CSAFPID-32023		—
Unresolved product id: CSAFPID-32024		—
Unresolved product id: CSAFPID-32025		—
Unresolved product id: CSAFPID-32026		—
Unresolved product id: CSAFPID-32027		—
Unresolved product id: CSAFPID-32028		—
Unresolved product id: CSAFPID-32029		—
Unresolved product id: CSAFPID-32030		—
Unresolved product id: CSAFPID-32031		—
Unresolved product id: CSAFPID-32032		—
Unresolved product id: CSAFPID-32033		—
Unresolved product id: CSAFPID-32034		—
Unresolved product id: CSAFPID-32035		—
Unresolved product id: CSAFPID-32036		—
Unresolved product id: CSAFPID-32037		—

Known affected 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—
Unresolved product id: CSAFPID-31007		—
Unresolved product id: CSAFPID-31008		—
Unresolved product id: CSAFPID-31009		—
Unresolved product id: CSAFPID-31010		—
Unresolved product id: CSAFPID-31011		—
Unresolved product id: CSAFPID-31012		—
Unresolved product id: CSAFPID-31013		—
Unresolved product id: CSAFPID-31014		—
Unresolved product id: CSAFPID-31015		—
Unresolved product id: CSAFPID-31016		—
Unresolved product id: CSAFPID-31017		—
Unresolved product id: CSAFPID-31018		—
Unresolved product id: CSAFPID-31019		—
Unresolved product id: CSAFPID-31020		—
Unresolved product id: CSAFPID-31021		—
Unresolved product id: CSAFPID-31022		—
Unresolved product id: CSAFPID-31023		—
Unresolved product id: CSAFPID-31024		—
Unresolved product id: CSAFPID-31025		—
Unresolved product id: CSAFPID-31026		—
Unresolved product id: CSAFPID-31027		—
Unresolved product id: CSAFPID-31028		—
Unresolved product id: CSAFPID-31029		—
Unresolved product id: CSAFPID-31030		—
Unresolved product id: CSAFPID-31031		—
Unresolved product id: CSAFPID-31032		—
Unresolved product id: CSAFPID-31033		—
Unresolved product id: CSAFPID-31034		—
Unresolved product id: CSAFPID-31035		—
Unresolved product id: CSAFPID-31036		—
Unresolved product id: CSAFPID-31037		—

CVE-2024-43389

A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Mitigation Access to the administrative interfaces should be granted only to trustworthy users.

Vendor Fix Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.

Affected products

Fixed 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—
Unresolved product id: CSAFPID-32007		—
Unresolved product id: CSAFPID-32008		—
Unresolved product id: CSAFPID-32009		—
Unresolved product id: CSAFPID-32010		—
Unresolved product id: CSAFPID-32011		—
Unresolved product id: CSAFPID-32012		—
Unresolved product id: CSAFPID-32013		—
Unresolved product id: CSAFPID-32014		—
Unresolved product id: CSAFPID-32015		—
Unresolved product id: CSAFPID-32016		—
Unresolved product id: CSAFPID-32017		—
Unresolved product id: CSAFPID-32018		—
Unresolved product id: CSAFPID-32019		—
Unresolved product id: CSAFPID-32020		—
Unresolved product id: CSAFPID-32021		—
Unresolved product id: CSAFPID-32022		—
Unresolved product id: CSAFPID-32023		—
Unresolved product id: CSAFPID-32024		—
Unresolved product id: CSAFPID-32025		—
Unresolved product id: CSAFPID-32026		—
Unresolved product id: CSAFPID-32027		—
Unresolved product id: CSAFPID-32028		—
Unresolved product id: CSAFPID-32029		—
Unresolved product id: CSAFPID-32030		—
Unresolved product id: CSAFPID-32031		—
Unresolved product id: CSAFPID-32032		—
Unresolved product id: CSAFPID-32033		—
Unresolved product id: CSAFPID-32034		—
Unresolved product id: CSAFPID-32035		—
Unresolved product id: CSAFPID-32036		—
Unresolved product id: CSAFPID-32037		—

Known affected 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—
Unresolved product id: CSAFPID-31007		—
Unresolved product id: CSAFPID-31008		—
Unresolved product id: CSAFPID-31009		—
Unresolved product id: CSAFPID-31010		—
Unresolved product id: CSAFPID-31011		—
Unresolved product id: CSAFPID-31012		—
Unresolved product id: CSAFPID-31013		—
Unresolved product id: CSAFPID-31014		—
Unresolved product id: CSAFPID-31015		—
Unresolved product id: CSAFPID-31016		—
Unresolved product id: CSAFPID-31017		—
Unresolved product id: CSAFPID-31018		—
Unresolved product id: CSAFPID-31019		—
Unresolved product id: CSAFPID-31020		—
Unresolved product id: CSAFPID-31021		—
Unresolved product id: CSAFPID-31022		—
Unresolved product id: CSAFPID-31023		—
Unresolved product id: CSAFPID-31024		—
Unresolved product id: CSAFPID-31025		—
Unresolved product id: CSAFPID-31026		—
Unresolved product id: CSAFPID-31027		—
Unresolved product id: CSAFPID-31028		—
Unresolved product id: CSAFPID-31029		—
Unresolved product id: CSAFPID-31030		—
Unresolved product id: CSAFPID-31031		—
Unresolved product id: CSAFPID-31032		—
Unresolved product id: CSAFPID-31033		—
Unresolved product id: CSAFPID-31034		—
Unresolved product id: CSAFPID-31035		—
Unresolved product id: CSAFPID-31036		—
Unresolved product id: CSAFPID-31037		—

CVE-2024-43390

A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Mitigation Access to the administrative interfaces should be granted only to trustworthy users.

Vendor Fix Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.

Affected products

Fixed 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—
Unresolved product id: CSAFPID-32007		—
Unresolved product id: CSAFPID-32008		—
Unresolved product id: CSAFPID-32009		—
Unresolved product id: CSAFPID-32010		—
Unresolved product id: CSAFPID-32011		—
Unresolved product id: CSAFPID-32012		—
Unresolved product id: CSAFPID-32013		—
Unresolved product id: CSAFPID-32014		—
Unresolved product id: CSAFPID-32015		—
Unresolved product id: CSAFPID-32016		—
Unresolved product id: CSAFPID-32017		—
Unresolved product id: CSAFPID-32018		—
Unresolved product id: CSAFPID-32019		—
Unresolved product id: CSAFPID-32020		—
Unresolved product id: CSAFPID-32021		—
Unresolved product id: CSAFPID-32022		—
Unresolved product id: CSAFPID-32023		—
Unresolved product id: CSAFPID-32024		—
Unresolved product id: CSAFPID-32025		—
Unresolved product id: CSAFPID-32026		—
Unresolved product id: CSAFPID-32027		—
Unresolved product id: CSAFPID-32028		—
Unresolved product id: CSAFPID-32029		—
Unresolved product id: CSAFPID-32030		—
Unresolved product id: CSAFPID-32031		—
Unresolved product id: CSAFPID-32032		—
Unresolved product id: CSAFPID-32033		—
Unresolved product id: CSAFPID-32034		—
Unresolved product id: CSAFPID-32035		—
Unresolved product id: CSAFPID-32036		—
Unresolved product id: CSAFPID-32037		—

Known affected 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—
Unresolved product id: CSAFPID-31007		—
Unresolved product id: CSAFPID-31008		—
Unresolved product id: CSAFPID-31009		—
Unresolved product id: CSAFPID-31010		—
Unresolved product id: CSAFPID-31011		—
Unresolved product id: CSAFPID-31012		—
Unresolved product id: CSAFPID-31013		—
Unresolved product id: CSAFPID-31014		—
Unresolved product id: CSAFPID-31015		—
Unresolved product id: CSAFPID-31016		—
Unresolved product id: CSAFPID-31017		—
Unresolved product id: CSAFPID-31018		—
Unresolved product id: CSAFPID-31019		—
Unresolved product id: CSAFPID-31020		—
Unresolved product id: CSAFPID-31021		—
Unresolved product id: CSAFPID-31022		—
Unresolved product id: CSAFPID-31023		—
Unresolved product id: CSAFPID-31024		—
Unresolved product id: CSAFPID-31025		—
Unresolved product id: CSAFPID-31026		—
Unresolved product id: CSAFPID-31027		—
Unresolved product id: CSAFPID-31028		—
Unresolved product id: CSAFPID-31029		—
Unresolved product id: CSAFPID-31030		—
Unresolved product id: CSAFPID-31031		—
Unresolved product id: CSAFPID-31032		—
Unresolved product id: CSAFPID-31033		—
Unresolved product id: CSAFPID-31034		—
Unresolved product id: CSAFPID-31035		—
Unresolved product id: CSAFPID-31036		—
Unresolved product id: CSAFPID-31037		—

CVE-2024-43391

A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_PORTFORWARDING.SRC_IP environment variable which can lead to a DoS.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Mitigation Access to the administrative interfaces should be granted only to trustworthy users.

Vendor Fix Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.

Affected products

Fixed 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—
Unresolved product id: CSAFPID-32007		—
Unresolved product id: CSAFPID-32008		—
Unresolved product id: CSAFPID-32009		—
Unresolved product id: CSAFPID-32010		—
Unresolved product id: CSAFPID-32011		—
Unresolved product id: CSAFPID-32012		—
Unresolved product id: CSAFPID-32013		—
Unresolved product id: CSAFPID-32014		—
Unresolved product id: CSAFPID-32015		—
Unresolved product id: CSAFPID-32016		—
Unresolved product id: CSAFPID-32017		—
Unresolved product id: CSAFPID-32018		—
Unresolved product id: CSAFPID-32019		—
Unresolved product id: CSAFPID-32020		—
Unresolved product id: CSAFPID-32021		—
Unresolved product id: CSAFPID-32022		—
Unresolved product id: CSAFPID-32023		—
Unresolved product id: CSAFPID-32024		—
Unresolved product id: CSAFPID-32025		—
Unresolved product id: CSAFPID-32026		—
Unresolved product id: CSAFPID-32027		—
Unresolved product id: CSAFPID-32028		—
Unresolved product id: CSAFPID-32029		—
Unresolved product id: CSAFPID-32030		—
Unresolved product id: CSAFPID-32031		—
Unresolved product id: CSAFPID-32032		—
Unresolved product id: CSAFPID-32033		—
Unresolved product id: CSAFPID-32034		—
Unresolved product id: CSAFPID-32035		—
Unresolved product id: CSAFPID-32036		—
Unresolved product id: CSAFPID-32037		—

Known affected 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—
Unresolved product id: CSAFPID-31007		—
Unresolved product id: CSAFPID-31008		—
Unresolved product id: CSAFPID-31009		—
Unresolved product id: CSAFPID-31010		—
Unresolved product id: CSAFPID-31011		—
Unresolved product id: CSAFPID-31012		—
Unresolved product id: CSAFPID-31013		—
Unresolved product id: CSAFPID-31014		—
Unresolved product id: CSAFPID-31015		—
Unresolved product id: CSAFPID-31016		—
Unresolved product id: CSAFPID-31017		—
Unresolved product id: CSAFPID-31018		—
Unresolved product id: CSAFPID-31019		—
Unresolved product id: CSAFPID-31020		—
Unresolved product id: CSAFPID-31021		—
Unresolved product id: CSAFPID-31022		—
Unresolved product id: CSAFPID-31023		—
Unresolved product id: CSAFPID-31024		—
Unresolved product id: CSAFPID-31025		—
Unresolved product id: CSAFPID-31026		—
Unresolved product id: CSAFPID-31027		—
Unresolved product id: CSAFPID-31028		—
Unresolved product id: CSAFPID-31029		—
Unresolved product id: CSAFPID-31030		—
Unresolved product id: CSAFPID-31031		—
Unresolved product id: CSAFPID-31032		—
Unresolved product id: CSAFPID-31033		—
Unresolved product id: CSAFPID-31034		—
Unresolved product id: CSAFPID-31035		—
Unresolved product id: CSAFPID-31036		—
Unresolved product id: CSAFPID-31037		—

CVE-2024-43392

A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP environment variable which can lead to a DoS.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Mitigation Access to the administrative interfaces should be granted only to trustworthy users.

Vendor Fix Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 or higher which fixes this vulnerability.

Affected products

Fixed 31 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—
Unresolved product id: CSAFPID-32007		—
Unresolved product id: CSAFPID-32008		—
Unresolved product id: CSAFPID-32009		—
Unresolved product id: CSAFPID-32010		—
Unresolved product id: CSAFPID-32011		—
Unresolved product id: CSAFPID-32012		—
Unresolved product id: CSAFPID-32013		—
Unresolved product id: CSAFPID-32014		—
Unresolved product id: CSAFPID-32015		—
Unresolved product id: CSAFPID-32016		—
Unresolved product id: CSAFPID-32017		—
Unresolved product id: CSAFPID-32018		—
Unresolved product id: CSAFPID-32019		—
Unresolved product id: CSAFPID-32020		—
Unresolved product id: CSAFPID-32021		—
Unresolved product id: CSAFPID-32022		—
Unresolved product id: CSAFPID-32023		—
Unresolved product id: CSAFPID-32024		—
Unresolved product id: CSAFPID-32025		—
Unresolved product id: CSAFPID-32026		—
Unresolved product id: CSAFPID-32027		—
Unresolved product id: CSAFPID-32028		—
Unresolved product id: CSAFPID-32029		—
Unresolved product id: CSAFPID-32030		—
Unresolved product id: CSAFPID-32031		—

Known affected 31 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—
Unresolved product id: CSAFPID-31007		—
Unresolved product id: CSAFPID-31008		—
Unresolved product id: CSAFPID-31009		—
Unresolved product id: CSAFPID-31010		—
Unresolved product id: CSAFPID-31011		—
Unresolved product id: CSAFPID-31012		—
Unresolved product id: CSAFPID-31013		—
Unresolved product id: CSAFPID-31014		—
Unresolved product id: CSAFPID-31015		—
Unresolved product id: CSAFPID-31016		—
Unresolved product id: CSAFPID-31017		—
Unresolved product id: CSAFPID-31018		—
Unresolved product id: CSAFPID-31019		—
Unresolved product id: CSAFPID-31020		—
Unresolved product id: CSAFPID-31021		—
Unresolved product id: CSAFPID-31022		—
Unresolved product id: CSAFPID-31023		—
Unresolved product id: CSAFPID-31024		—
Unresolved product id: CSAFPID-31025		—
Unresolved product id: CSAFPID-31026		—
Unresolved product id: CSAFPID-31027		—
Unresolved product id: CSAFPID-31028		—
Unresolved product id: CSAFPID-31029		—
Unresolved product id: CSAFPID-31030		—
Unresolved product id: CSAFPID-31031		—

CVE-2024-43393

A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP FW_RULESETS.FROM_IP FW_RULESETS.IN_IP environment variable which can lead to a DoS.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Mitigation Access to the administrative interfaces should be granted only to trustworthy users.

Vendor Fix Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.

Affected products

Fixed 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-32001		—
Unresolved product id: CSAFPID-32002		—
Unresolved product id: CSAFPID-32003		—
Unresolved product id: CSAFPID-32004		—
Unresolved product id: CSAFPID-32005		—
Unresolved product id: CSAFPID-32006		—
Unresolved product id: CSAFPID-32007		—
Unresolved product id: CSAFPID-32008		—
Unresolved product id: CSAFPID-32009		—
Unresolved product id: CSAFPID-32010		—
Unresolved product id: CSAFPID-32011		—
Unresolved product id: CSAFPID-32012		—
Unresolved product id: CSAFPID-32013		—
Unresolved product id: CSAFPID-32014		—
Unresolved product id: CSAFPID-32015		—
Unresolved product id: CSAFPID-32016		—
Unresolved product id: CSAFPID-32017		—
Unresolved product id: CSAFPID-32018		—
Unresolved product id: CSAFPID-32019		—
Unresolved product id: CSAFPID-32020		—
Unresolved product id: CSAFPID-32021		—
Unresolved product id: CSAFPID-32022		—
Unresolved product id: CSAFPID-32023		—
Unresolved product id: CSAFPID-32024		—
Unresolved product id: CSAFPID-32025		—
Unresolved product id: CSAFPID-32026		—
Unresolved product id: CSAFPID-32027		—
Unresolved product id: CSAFPID-32028		—
Unresolved product id: CSAFPID-32029		—
Unresolved product id: CSAFPID-32030		—
Unresolved product id: CSAFPID-32031		—
Unresolved product id: CSAFPID-32032		—
Unresolved product id: CSAFPID-32033		—
Unresolved product id: CSAFPID-32034		—
Unresolved product id: CSAFPID-32035		—
Unresolved product id: CSAFPID-32036		—
Unresolved product id: CSAFPID-32037		—

Known affected 37 products

Product	Identifier	Version	Remediation
Unresolved product id: CSAFPID-31001		—
Unresolved product id: CSAFPID-31002		—
Unresolved product id: CSAFPID-31003		—
Unresolved product id: CSAFPID-31004		—
Unresolved product id: CSAFPID-31005		—
Unresolved product id: CSAFPID-31006		—
Unresolved product id: CSAFPID-31007		—
Unresolved product id: CSAFPID-31008		—
Unresolved product id: CSAFPID-31009		—
Unresolved product id: CSAFPID-31010		—
Unresolved product id: CSAFPID-31011		—
Unresolved product id: CSAFPID-31012		—
Unresolved product id: CSAFPID-31013		—
Unresolved product id: CSAFPID-31014		—
Unresolved product id: CSAFPID-31015		—
Unresolved product id: CSAFPID-31016		—
Unresolved product id: CSAFPID-31017		—
Unresolved product id: CSAFPID-31018		—
Unresolved product id: CSAFPID-31019		—
Unresolved product id: CSAFPID-31020		—
Unresolved product id: CSAFPID-31021		—
Unresolved product id: CSAFPID-31022		—
Unresolved product id: CSAFPID-31023		—
Unresolved product id: CSAFPID-31024		—
Unresolved product id: CSAFPID-31025		—
Unresolved product id: CSAFPID-31026		—
Unresolved product id: CSAFPID-31027		—
Unresolved product id: CSAFPID-31028		—
Unresolved product id: CSAFPID-31029		—
Unresolved product id: CSAFPID-31030		—
Unresolved product id: CSAFPID-31031		—
Unresolved product id: CSAFPID-31032		—
Unresolved product id: CSAFPID-31033		—
Unresolved product id: CSAFPID-31034		—
Unresolved product id: CSAFPID-31035		—
Unresolved product id: CSAFPID-31036		—
Unresolved product id: CSAFPID-31037		—

References

4 references

URL	Category
https://phoenixcontact.com/psirt	external
https://certvde.com/de/advisories/vendor/phoenixc…	external
https://certvde.com/en/advisories/VDE-2024-039	self
https://phoenixcontact.csaf-tp.certvde.com/.well-…	self

Acknowledgments

CERT@VDE certvde.com

Nozomi Networks Security Research Team Andrea Palanca www.nozominetworks.com/labs

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "organization": "CERT@VDE",
        "summary": "coordination",
        "urls": [
          "https://certvde.com"
        ]
      },
      {
        "names": [
          "Andrea Palanca"
        ],
        "organization": "Nozomi Networks Security Research Team",
        "summary": "These vulnerabilities were discovered by the Nozomi Networks Security Research Team. We kindly appreciate the coordinated disclosure of these vulnerabilities by the finder.",
        "urls": [
          "https://www.nozominetworks.com/labs"
        ]
      }
    ],
    "aggregate_severity": {
      "namespace": "https://www.first.org/cvss/v3.1/specification-document#Qualitative-Severity-Rating-Scale",
      "text": "high"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "summary",
        "text": "Confidential data in HTTP query string of user requests.\nIncomplete sanitation of user input in administrative web interface.",
        "title": "Summary"
      },
      {
        "category": "description",
        "text": "Attackers can gain knowledge of confidential user data.\nAttackers can escalate their privileges on the system.\nAttackers can trigger covert misbehavior within several services.",
        "title": "Impact"
      },
      {
        "category": "description",
        "text": "Access to the administrative interfaces should be granted only to trustworthy users.",
        "title": "Mitigation"
      },
      {
        "category": "description",
        "text": "Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes these vulnerabilities.",
        "title": "Remediation"
      },
      {
        "category": "general",
        "text": "For general information and recommendations on security measures refer to the [mGuard documentation](https://help.mguard.com/en/documentation)",
        "title": "General Recommendation"
      },
      {
        "category": "description",
        "text": "mGuards are industrial routers and security appliances",
        "title": "Product Description"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "psirt@phoenixcontact.com",
      "name": "Phoenix Contact GmbH \u0026 Co. KG",
      "namespace": "https://phoenixcontact.com/psirt"
    },
    "references": [
      {
        "category": "external",
        "summary": "Phoenix Contact PSIRT",
        "url": "https://phoenixcontact.com/psirt"
      },
      {
        "category": "external",
        "summary": "Phoenix Contact advisory overview at CERT@VDE",
        "url": "https://certvde.com/de/advisories/vendor/phoenixcontact/"
      },
      {
        "category": "self",
        "summary": "VDE-2024-039: Phoenix Contact: Multiple Vulnerabilities in mGuard devices - HTML",
        "url": "https://certvde.com/en/advisories/VDE-2024-039"
      },
      {
        "category": "self",
        "summary": "VDE-2024-039: Phoenix Contact: Multiple Vulnerabilities in mGuard devices - CSAF",
        "url": "https://phoenixcontact.csaf-tp.certvde.com/.well-known/csaf/white/2024/vde-2024-039.json"
      }
    ],
    "title": "Phoenix Contact: Multiple Vulnerabilities in mGuard devices",
    "tracking": {
      "aliases": [
        "VDE-2024-039",
        "PCSA-2024/00008"
      ],
      "current_release_date": "2025-08-27T10:00:00.000Z",
      "generator": {
        "date": "2025-08-28T07:39:37.033Z",
        "engine": {
          "name": "Secvisogram",
          "version": "2.5.34"
        }
      },
      "id": "VDE-2024-039",
      "initial_release_date": "2024-09-10T10:00:00.000Z",
      "revision_history": [
        {
          "date": "2024-09-10T10:00:00.000Z",
          "number": "1.0.0",
          "summary": "Initial revision."
        },
        {
          "date": "2024-11-06T11:27:01.000Z",
          "number": "1.0.1",
          "summary": "Fix: correct certvde domain, added self-reference"
        },
        {
          "date": "2025-04-10T13:00:00.000Z",
          "number": "1.0.2",
          "summary": "Fixed csaf reference URL"
        },
        {
          "date": "2025-08-27T10:00:00.000Z",
          "number": "1.1.2",
          "summary": "Update: CWE from CVE-2024-43388, CVE-2024-43389, CVE-2024-43390, CVE-2024-43391, CVE-2024-43392, CVE-2024-43393, CVE-2024-7698, Revision History"
        }
      ],
      "status": "final",
      "version": "1.1.2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "FL MGUARD RS2000 TX/TX VPN",
                "product": {
                  "name": "FL MGUARD RS2000 TX/TX VPN",
                  "product_id": "CSAFPID-11001",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700642"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS2005 TX VPN",
                "product": {
                  "name": "FL MGUARD RS2005 TX VPN",
                  "product_id": "CSAFPID-11002",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2701875"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS2000 3G VPN",
                "product": {
                  "name": "TC MGUARD RS2000 3G VPN",
                  "product_id": "CSAFPID-11003",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2903441"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS4000 TX/TX",
                "product": {
                  "name": "FL MGUARD RS4000 TX/TX",
                  "product_id": "CSAFPID-11004",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700634"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS4000 TX/TX VPN",
                "product": {
                  "name": "FL MGUARD RS4000 TX/TX VPN",
                  "product_id": "CSAFPID-11005",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2200515"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS4004 TX/DTX",
                "product": {
                  "name": "FL MGUARD RS4004 TX/DTX",
                  "product_id": "CSAFPID-11006",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2701876"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS4004 TX/DTX VPN",
                "product": {
                  "name": "FL MGUARD RS4004 TX/DTX VPN",
                  "product_id": "CSAFPID-11007",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2701877"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS4000 3G VPN",
                "product": {
                  "name": "TC MGUARD RS4000 3G VPN",
                  "product_id": "CSAFPID-11008",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2903440"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS2000 TX/TX-B",
                "product": {
                  "name": "FL MGUARD RS2000 TX/TX-B",
                  "product_id": "CSAFPID-11009",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702139"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS4000 TX/TX-P",
                "product": {
                  "name": "FL MGUARD RS4000 TX/TX-P",
                  "product_id": "CSAFPID-11010",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702259"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD RS4000 TX/TX-M",
                "product": {
                  "name": "FL MGUARD RS4000 TX/TX-M",
                  "product_id": "CSAFPID-11011",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702470"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD PCI4000",
                "product": {
                  "name": "FL MGUARD PCI4000",
                  "product_id": "CSAFPID-11012",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2701274"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD PCI4000 VPN",
                "product": {
                  "name": "FL MGUARD PCI4000 VPN",
                  "product_id": "CSAFPID-11013",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2701275"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD PCIE4000",
                "product": {
                  "name": "FL MGUARD PCIE4000",
                  "product_id": "CSAFPID-11014",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2701277"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD PCIE4000 VPN",
                "product": {
                  "name": "FL MGUARD PCIE4000 VPN",
                  "product_id": "CSAFPID-11015",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2701278"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD DELTA TX/TX",
                "product": {
                  "name": "FL MGUARD DELTA TX/TX",
                  "product_id": "CSAFPID-11016",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700967"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD DELTA TX/TX VPN",
                "product": {
                  "name": "FL MGUARD DELTA TX/TX VPN",
                  "product_id": "CSAFPID-11017",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700968"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD SMART2",
                "product": {
                  "name": "FL MGUARD SMART2",
                  "product_id": "CSAFPID-11018",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700640"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD SMART2 VPN",
                "product": {
                  "name": "FL MGUARD SMART2 VPN",
                  "product_id": "CSAFPID-11019",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700639"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD CORE TX",
                "product": {
                  "name": "FL MGUARD CORE TX",
                  "product_id": "CSAFPID-11020",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702884"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD CORE TX VPN",
                "product": {
                  "name": "FL MGUARD CORE TX VPN",
                  "product_id": "CSAFPID-11021",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702831"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS2000 4G VPN",
                "product": {
                  "name": "TC MGUARD RS2000 4G VPN",
                  "product_id": "CSAFPID-11022",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2903588"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS4000 4G VPN",
                "product": {
                  "name": "TC MGUARD RS4000 4G VPN",
                  "product_id": "CSAFPID-11023",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2903586"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS4000 4G VZW VPN",
                "product": {
                  "name": "TC MGUARD RS4000 4G VZW VPN",
                  "product_id": "CSAFPID-11024",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1010461"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS2000 4G VZW VPN",
                "product": {
                  "name": "TC MGUARD RS2000 4G VZW VPN",
                  "product_id": "CSAFPID-11025",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1010462"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS4000 4G ATT VPN",
                "product": {
                  "name": "TC MGUARD RS4000 4G ATT VPN",
                  "product_id": "CSAFPID-11026",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1010463"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "TC MGUARD RS2000 4G ATT VPN",
                "product": {
                  "name": "TC MGUARD RS2000 4G ATT VPN",
                  "product_id": "CSAFPID-11027",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1010464"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD GT/GT",
                "product": {
                  "name": "FL MGUARD GT/GT",
                  "product_id": "CSAFPID-11028",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700197"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD GT/GT VPN",
                "product": {
                  "name": "FL MGUARD GT/GT VPN",
                  "product_id": "CSAFPID-11029",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2700198"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD CENTERPORT",
                "product": {
                  "name": "FL MGUARD CENTERPORT",
                  "product_id": "CSAFPID-11030",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702547"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD CENTERPORT VPN-1000",
                "product": {
                  "name": "FL MGUARD CENTERPORT VPN-1000",
                  "product_id": "CSAFPID-11031",
                  "product_identification_helper": {
                    "model_numbers": [
                      "2702820"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD 2102",
                "product": {
                  "name": "FL MGUARD 2102",
                  "product_id": "CSAFPID-11032",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1357828"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD 2105",
                "product": {
                  "name": "FL MGUARD 2105",
                  "product_id": "CSAFPID-11033",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1357850"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD 4302",
                "product": {
                  "name": "FL MGUARD 4302",
                  "product_id": "CSAFPID-11034",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1357840"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD 4305",
                "product": {
                  "name": "FL MGUARD 4305",
                  "product_id": "CSAFPID-11035",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1357875"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD 4102 PCIE",
                "product": {
                  "name": "FL MGUARD 4102 PCIE",
                  "product_id": "CSAFPID-11036",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1357842"
                    ]
                  }
                }
              },
              {
                "category": "product_name",
                "name": "FL MGUARD 4102 PCI",
                "product": {
                  "name": "FL MGUARD 4102 PCI",
                  "product_id": "CSAFPID-11037",
                  "product_identification_helper": {
                    "model_numbers": [
                      "1441187"
                    ]
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Hardware"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c8.9.3",
                "product": {
                  "name": "Firmware \u003c8.9.3",
                  "product_id": "CSAFPID-21892"
                }
              },
              {
                "category": "product_version",
                "name": "8.9.3",
                "product": {
                  "name": "Firmware 8.9.3",
                  "product_id": "CSAFPID-22893"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c10.4.1",
                "product": {
                  "name": "Firmware \u003c10.4.1",
                  "product_id": "CSAFPID-21040"
                }
              },
              {
                "category": "product_version",
                "name": "10.4.1",
                "product": {
                  "name": "Firmware 10.4.1",
                  "product_id": "CSAFPID-22041"
                }
              }
            ],
            "category": "product_family",
            "name": "Firmware"
          }
        ],
        "category": "vendor",
        "name": "Phoenix Contact"
      }
    ],
    "product_groups": [
      {
        "group_id": "CSAFGID-0001",
        "product_ids": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006",
          "CSAFPID-31007",
          "CSAFPID-31008",
          "CSAFPID-31009",
          "CSAFPID-31010",
          "CSAFPID-31011",
          "CSAFPID-31012",
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018",
          "CSAFPID-31019",
          "CSAFPID-31020",
          "CSAFPID-31021",
          "CSAFPID-31022",
          "CSAFPID-31023",
          "CSAFPID-31024",
          "CSAFPID-31025",
          "CSAFPID-31026",
          "CSAFPID-31027",
          "CSAFPID-31028",
          "CSAFPID-31029",
          "CSAFPID-31030",
          "CSAFPID-31031",
          "CSAFPID-31032",
          "CSAFPID-31033",
          "CSAFPID-31034",
          "CSAFPID-31035",
          "CSAFPID-31036",
          "CSAFPID-31037"
        ],
        "summary": "Affected Products."
      },
      {
        "group_id": "CSAFGID-0002",
        "product_ids": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015",
          "CSAFPID-32016",
          "CSAFPID-32017",
          "CSAFPID-32018",
          "CSAFPID-32019",
          "CSAFPID-32020",
          "CSAFPID-32021",
          "CSAFPID-32022",
          "CSAFPID-32023",
          "CSAFPID-32024",
          "CSAFPID-32025",
          "CSAFPID-32026",
          "CSAFPID-32027",
          "CSAFPID-32028",
          "CSAFPID-32029",
          "CSAFPID-32030",
          "CSAFPID-32031",
          "CSAFPID-32032",
          "CSAFPID-32033",
          "CSAFPID-32034",
          "CSAFPID-32035",
          "CSAFPID-32036",
          "CSAFPID-32037"
        ],
        "summary": "Fixed Products."
      }
    ],
    "relationships": [
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD RS2000 TX/TX VPN",
          "product_id": "CSAFPID-31001"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11001"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD RS2005 TX VPN",
          "product_id": "CSAFPID-31002"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11002"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on TC MGUARD RS2000 3G VPN",
          "product_id": "CSAFPID-31003"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11003"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD RS4000 TX/TX",
          "product_id": "CSAFPID-31004"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11004"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD RS4000 TX/TX VPN",
          "product_id": "CSAFPID-31005"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11005"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD RS4004 TX/DTX",
          "product_id": "CSAFPID-31006"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11006"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD RS4004 TX/DTX VPN",
          "product_id": "CSAFPID-31007"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11007"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on TC MGUARD RS4000 3G VPN",
          "product_id": "CSAFPID-31008"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11008"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD RS2000 TX/TX-B",
          "product_id": "CSAFPID-31009"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11009"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD RS4000 TX/TX-P",
          "product_id": "CSAFPID-31010"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11010"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD RS4000 TX/TX-M",
          "product_id": "CSAFPID-31011"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11011"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD PCI4000",
          "product_id": "CSAFPID-31012"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11012"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD PCI4000 VPN",
          "product_id": "CSAFPID-31013"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11013"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD PCIE4000",
          "product_id": "CSAFPID-31014"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11014"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD PCIE4000 VPN",
          "product_id": "CSAFPID-31015"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11015"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD DELTA TX/TX",
          "product_id": "CSAFPID-31016"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11016"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD DELTA TX/TX VPN",
          "product_id": "CSAFPID-31017"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11017"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD SMART2",
          "product_id": "CSAFPID-31018"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11018"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD SMART2 VPN",
          "product_id": "CSAFPID-31019"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11019"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD CORE TX",
          "product_id": "CSAFPID-31020"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11020"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD CORE TX VPN",
          "product_id": "CSAFPID-31021"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11021"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on TC MGUARD RS2000 4G VPN",
          "product_id": "CSAFPID-31022"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11022"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on TC MGUARD RS4000 4G VPN",
          "product_id": "CSAFPID-31023"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11023"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on TC MGUARD RS4000 4G VZW VPN",
          "product_id": "CSAFPID-31024"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11024"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on TC MGUARD RS2000 4G VZW VPN",
          "product_id": "CSAFPID-31025"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11025"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on TC MGUARD RS4000 4G ATT VPN",
          "product_id": "CSAFPID-31026"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11026"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on TC MGUARD RS2000 4G ATT VPN",
          "product_id": "CSAFPID-31027"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11027"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD GT/GT",
          "product_id": "CSAFPID-31028"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11028"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD GT/GT VPN",
          "product_id": "CSAFPID-31029"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11029"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD CENTERPORT",
          "product_id": "CSAFPID-31030"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11030"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c8.9.3 installed on FL MGUARD CENTERPORT VPN-1000",
          "product_id": "CSAFPID-31031"
        },
        "product_reference": "CSAFPID-21892",
        "relates_to_product_reference": "CSAFPID-11031"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c10.4.1 installed on FL MGUARD 2102",
          "product_id": "CSAFPID-31032"
        },
        "product_reference": "CSAFPID-21040",
        "relates_to_product_reference": "CSAFPID-11032"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c10.4.1 installed on FL MGUARD 2105",
          "product_id": "CSAFPID-31033"
        },
        "product_reference": "CSAFPID-21040",
        "relates_to_product_reference": "CSAFPID-11033"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c10.4.1 installed on FL MGUARD 4302",
          "product_id": "CSAFPID-31034"
        },
        "product_reference": "CSAFPID-21040",
        "relates_to_product_reference": "CSAFPID-11034"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c10.4.1 installed on FL MGUARD 4305",
          "product_id": "CSAFPID-31035"
        },
        "product_reference": "CSAFPID-21040",
        "relates_to_product_reference": "CSAFPID-11035"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c10.4.1 installed on FL MGUARD 4102 PCIE",
          "product_id": "CSAFPID-31036"
        },
        "product_reference": "CSAFPID-21040",
        "relates_to_product_reference": "CSAFPID-11036"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware \u003c10.4.1 installed on FL MGUARD 4102 PCI",
          "product_id": "CSAFPID-31037"
        },
        "product_reference": "CSAFPID-21040",
        "relates_to_product_reference": "CSAFPID-11037"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD RS2000 TX/TX VPN",
          "product_id": "CSAFPID-32001"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11001"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD RS2005 TX VPN",
          "product_id": "CSAFPID-32002"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11002"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on TC MGUARD RS2000 3G VPN",
          "product_id": "CSAFPID-32003"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11003"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD RS4000 TX/TX",
          "product_id": "CSAFPID-32004"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11004"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD RS4000 TX/TX VPN",
          "product_id": "CSAFPID-32005"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11005"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD RS4004 TX/DTX",
          "product_id": "CSAFPID-32006"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11006"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD RS4004 TX/DTX VPN",
          "product_id": "CSAFPID-32007"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11007"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on TC MGUARD RS4000 3G VPN",
          "product_id": "CSAFPID-32008"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11008"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD RS2000 TX/TX-B",
          "product_id": "CSAFPID-32009"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11009"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD RS4000 TX/TX-P",
          "product_id": "CSAFPID-32010"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11010"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD RS4000 TX/TX-M",
          "product_id": "CSAFPID-32011"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11011"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD PCI4000",
          "product_id": "CSAFPID-32012"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11012"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD PCI4000 VPN",
          "product_id": "CSAFPID-32013"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11013"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD PCIE4000",
          "product_id": "CSAFPID-32014"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11014"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD PCIE4000 VPN",
          "product_id": "CSAFPID-32015"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11015"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD DELTA TX/TX",
          "product_id": "CSAFPID-32016"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11016"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD DELTA TX/TX VPN",
          "product_id": "CSAFPID-32017"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11017"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD SMART2",
          "product_id": "CSAFPID-32018"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11018"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD SMART2 VPN",
          "product_id": "CSAFPID-32019"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11019"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD CORE TX",
          "product_id": "CSAFPID-32020"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11020"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD CORE TX VPN",
          "product_id": "CSAFPID-32021"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11021"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on TC MGUARD RS2000 4G VPN",
          "product_id": "CSAFPID-32022"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11022"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on TC MGUARD RS4000 4G VPN",
          "product_id": "CSAFPID-32023"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11023"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on TC MGUARD RS4000 4G VZW VPN",
          "product_id": "CSAFPID-32024"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11024"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on TC MGUARD RS2000 4G VZW VPN",
          "product_id": "CSAFPID-32025"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11025"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on TC MGUARD RS4000 4G ATT VPN",
          "product_id": "CSAFPID-32026"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11026"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on TC MGUARD RS2000 4G ATT VPN",
          "product_id": "CSAFPID-32027"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11027"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD GT/GT",
          "product_id": "CSAFPID-32028"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11028"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD GT/GT VPN",
          "product_id": "CSAFPID-32029"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11029"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD CENTERPORT",
          "product_id": "CSAFPID-32030"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11030"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 8.9.3 installed on FL MGUARD CENTERPORT VPN-1000",
          "product_id": "CSAFPID-32031"
        },
        "product_reference": "CSAFPID-22893",
        "relates_to_product_reference": "CSAFPID-11031"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 10.4.1 installed on FL MGUARD 2102",
          "product_id": "CSAFPID-32032"
        },
        "product_reference": "CSAFPID-22041",
        "relates_to_product_reference": "CSAFPID-11032"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 10.4.1 installed on FL MGUARD 2105",
          "product_id": "CSAFPID-32033"
        },
        "product_reference": "CSAFPID-22041",
        "relates_to_product_reference": "CSAFPID-11033"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 10.4.1 installed on FL MGUARD 4302",
          "product_id": "CSAFPID-32034"
        },
        "product_reference": "CSAFPID-22041",
        "relates_to_product_reference": "CSAFPID-11034"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 10.4.1 installed on FL MGUARD 4305",
          "product_id": "CSAFPID-32035"
        },
        "product_reference": "CSAFPID-22041",
        "relates_to_product_reference": "CSAFPID-11035"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 10.4.1 installed on FL MGUARD 4102 PCIE",
          "product_id": "CSAFPID-32036"
        },
        "product_reference": "CSAFPID-22041",
        "relates_to_product_reference": "CSAFPID-11036"
      },
      {
        "category": "installed_on",
        "full_product_name": {
          "name": "Firmware 10.4.1 installed on FL MGUARD 4102 PCI",
          "product_id": "CSAFPID-32037"
        },
        "product_reference": "CSAFPID-22041",
        "relates_to_product_reference": "CSAFPID-11037"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-7698",
      "cwe": {
        "id": "CWE-201",
        "name": "Insertion of Sensitive Information Into Sent Data"
      },
      "notes": [
        {
          "audience": "all",
          "category": "description",
          "text": "A low privileged remote attacker can get access to CSRF tokens of higher privileged users which can be abused to mount CSRF\nattacks.",
          "title": "Vulnerability Description"
        },
        {
          "audience": "operational management and system administrators",
          "category": "details",
          "text": "User with low privileges (read access to logs) may get access to anti CSRF tokens of higher privileged users. These tokens can be abused to mount CSRF attacks.",
          "title": "Vulnerability Impact"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015",
          "CSAFPID-32016",
          "CSAFPID-32017",
          "CSAFPID-32018",
          "CSAFPID-32019",
          "CSAFPID-32020",
          "CSAFPID-32021",
          "CSAFPID-32022",
          "CSAFPID-32023",
          "CSAFPID-32024",
          "CSAFPID-32025",
          "CSAFPID-32026",
          "CSAFPID-32027",
          "CSAFPID-32028",
          "CSAFPID-32029",
          "CSAFPID-32030",
          "CSAFPID-32031",
          "CSAFPID-32032",
          "CSAFPID-32033",
          "CSAFPID-32034",
          "CSAFPID-32035",
          "CSAFPID-32036",
          "CSAFPID-32037"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006",
          "CSAFPID-31007",
          "CSAFPID-31008",
          "CSAFPID-31009",
          "CSAFPID-31010",
          "CSAFPID-31011",
          "CSAFPID-31012",
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018",
          "CSAFPID-31019",
          "CSAFPID-31020",
          "CSAFPID-31021",
          "CSAFPID-31022",
          "CSAFPID-31023",
          "CSAFPID-31024",
          "CSAFPID-31025",
          "CSAFPID-31026",
          "CSAFPID-31027",
          "CSAFPID-31028",
          "CSAFPID-31029",
          "CSAFPID-31030",
          "CSAFPID-31031",
          "CSAFPID-31032",
          "CSAFPID-31033",
          "CSAFPID-31034",
          "CSAFPID-31035",
          "CSAFPID-31036",
          "CSAFPID-31037"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Read access to the device via administrative interfaces should be granted only to trustworthy users.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.7,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 5.7,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 5.7,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006",
            "CSAFPID-31007",
            "CSAFPID-31008",
            "CSAFPID-31009",
            "CSAFPID-31010",
            "CSAFPID-31011",
            "CSAFPID-31012",
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018",
            "CSAFPID-31019",
            "CSAFPID-31020",
            "CSAFPID-31021",
            "CSAFPID-31022",
            "CSAFPID-31023",
            "CSAFPID-31024",
            "CSAFPID-31025",
            "CSAFPID-31026",
            "CSAFPID-31027",
            "CSAFPID-31028",
            "CSAFPID-31029",
            "CSAFPID-31030",
            "CSAFPID-31031",
            "CSAFPID-31032",
            "CSAFPID-31033",
            "CSAFPID-31034",
            "CSAFPID-31035",
            "CSAFPID-31036",
            "CSAFPID-31037"
          ]
        }
      ],
      "title": "CVE-2024-7698"
    },
    {
      "cve": "CVE-2024-7699",
      "cwe": {
        "id": "CWE-78",
        "name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
      },
      "notes": [
        {
          "audience": "all",
          "category": "description",
          "text": "An low privileged remote attacker can execute OS commands with root privileges due to improper neutralization of special\nelements in user data.",
          "title": "Vulnerability Description"
        },
        {
          "audience": "operational management and system administrators",
          "category": "details",
          "text": "Users with privileges to use the action endpoint may trigger misbehavior in connected functionality.",
          "title": "Vulnerability Impact"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015",
          "CSAFPID-32016",
          "CSAFPID-32017",
          "CSAFPID-32018",
          "CSAFPID-32019",
          "CSAFPID-32020",
          "CSAFPID-32021",
          "CSAFPID-32022",
          "CSAFPID-32023",
          "CSAFPID-32024",
          "CSAFPID-32025",
          "CSAFPID-32026",
          "CSAFPID-32027",
          "CSAFPID-32028",
          "CSAFPID-32029",
          "CSAFPID-32030",
          "CSAFPID-32031",
          "CSAFPID-32032",
          "CSAFPID-32033",
          "CSAFPID-32034",
          "CSAFPID-32035",
          "CSAFPID-32036",
          "CSAFPID-32037"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006",
          "CSAFPID-31007",
          "CSAFPID-31008",
          "CSAFPID-31009",
          "CSAFPID-31010",
          "CSAFPID-31011",
          "CSAFPID-31012",
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018",
          "CSAFPID-31019",
          "CSAFPID-31020",
          "CSAFPID-31021",
          "CSAFPID-31022",
          "CSAFPID-31023",
          "CSAFPID-31024",
          "CSAFPID-31025",
          "CSAFPID-31026",
          "CSAFPID-31027",
          "CSAFPID-31028",
          "CSAFPID-31029",
          "CSAFPID-31030",
          "CSAFPID-31031",
          "CSAFPID-31032",
          "CSAFPID-31033",
          "CSAFPID-31034",
          "CSAFPID-31035",
          "CSAFPID-31036",
          "CSAFPID-31037"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Access to the administrative interfaces should be granted only to trustworthy users.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 8.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 8.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006",
            "CSAFPID-31007",
            "CSAFPID-31008",
            "CSAFPID-31009",
            "CSAFPID-31010",
            "CSAFPID-31011",
            "CSAFPID-31012",
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018",
            "CSAFPID-31019",
            "CSAFPID-31020",
            "CSAFPID-31021",
            "CSAFPID-31022",
            "CSAFPID-31023",
            "CSAFPID-31024",
            "CSAFPID-31025",
            "CSAFPID-31026",
            "CSAFPID-31027",
            "CSAFPID-31028",
            "CSAFPID-31029",
            "CSAFPID-31030",
            "CSAFPID-31031",
            "CSAFPID-31032",
            "CSAFPID-31033",
            "CSAFPID-31034",
            "CSAFPID-31035",
            "CSAFPID-31036",
            "CSAFPID-31037"
          ]
        }
      ],
      "title": "CVE-2024-7699"
    },
    {
      "cve": "CVE-2024-43384",
      "cwe": {
        "id": "CWE-212",
        "name": "Improper Removal of Sensitive Information Before Storage or Transfer"
      },
      "notes": [
        {
          "audience": "all",
          "category": "description",
          "text": "A low privileged remote attacker can gain the root password due to improper removal of sensitive information before storage or\ntransfer.",
          "title": "Vulnerability Description"
        },
        {
          "audience": "operational management and system administrators",
          "category": "details",
          "text": "User with low privileges (read access to logs) may gain knowledge about foreign passwords. They can be misused for privilege escalation or to get unauthorized access to target systems.",
          "title": "Vulnerability Impact"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015",
          "CSAFPID-32016",
          "CSAFPID-32017",
          "CSAFPID-32018",
          "CSAFPID-32019",
          "CSAFPID-32020",
          "CSAFPID-32021",
          "CSAFPID-32022",
          "CSAFPID-32023",
          "CSAFPID-32024",
          "CSAFPID-32025",
          "CSAFPID-32026",
          "CSAFPID-32027",
          "CSAFPID-32028",
          "CSAFPID-32029",
          "CSAFPID-32030",
          "CSAFPID-32031",
          "CSAFPID-32032",
          "CSAFPID-32033",
          "CSAFPID-32034",
          "CSAFPID-32035",
          "CSAFPID-32036",
          "CSAFPID-32037"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006",
          "CSAFPID-31007",
          "CSAFPID-31008",
          "CSAFPID-31009",
          "CSAFPID-31010",
          "CSAFPID-31011",
          "CSAFPID-31012",
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018",
          "CSAFPID-31019",
          "CSAFPID-31020",
          "CSAFPID-31021",
          "CSAFPID-31022",
          "CSAFPID-31023",
          "CSAFPID-31024",
          "CSAFPID-31025",
          "CSAFPID-31026",
          "CSAFPID-31027",
          "CSAFPID-31028",
          "CSAFPID-31029",
          "CSAFPID-31030",
          "CSAFPID-31031",
          "CSAFPID-31032",
          "CSAFPID-31033",
          "CSAFPID-31034",
          "CSAFPID-31035",
          "CSAFPID-31036",
          "CSAFPID-31037"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Read access to the device via administrative interfaces should be granted only to trustworthy users.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 8,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006",
            "CSAFPID-31007",
            "CSAFPID-31008",
            "CSAFPID-31009",
            "CSAFPID-31010",
            "CSAFPID-31011",
            "CSAFPID-31012",
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018",
            "CSAFPID-31019",
            "CSAFPID-31020",
            "CSAFPID-31021",
            "CSAFPID-31022",
            "CSAFPID-31023",
            "CSAFPID-31024",
            "CSAFPID-31025",
            "CSAFPID-31026",
            "CSAFPID-31027",
            "CSAFPID-31028",
            "CSAFPID-31029",
            "CSAFPID-31030",
            "CSAFPID-31031",
            "CSAFPID-31032",
            "CSAFPID-31033",
            "CSAFPID-31034",
            "CSAFPID-31035",
            "CSAFPID-31036",
            "CSAFPID-31037"
          ]
        }
      ],
      "title": "CVE-2024-43384"
    },
    {
      "cve": "CVE-2024-43385",
      "cwe": {
        "id": "CWE-78",
        "name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
      },
      "notes": [
        {
          "audience": "all",
          "category": "description",
          "text": "A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of\nspecial elements in the variable PROXY_HTTP_PORT in mGuard devices",
          "title": "Vulnerability Description"
        },
        {
          "audience": "operational management and system administrators",
          "category": "details",
          "text": "Users with privileges to perform configuration changes can trigger the execution of arbitrary OS commands. As these commands are executed with root privileges, this can lead to a privilege escalation.",
          "title": "Vulnerability Impact"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015",
          "CSAFPID-32016",
          "CSAFPID-32017",
          "CSAFPID-32018",
          "CSAFPID-32019",
          "CSAFPID-32020",
          "CSAFPID-32021",
          "CSAFPID-32022",
          "CSAFPID-32023",
          "CSAFPID-32024",
          "CSAFPID-32025",
          "CSAFPID-32026",
          "CSAFPID-32027",
          "CSAFPID-32028",
          "CSAFPID-32029",
          "CSAFPID-32030",
          "CSAFPID-32031",
          "CSAFPID-32032",
          "CSAFPID-32033",
          "CSAFPID-32034",
          "CSAFPID-32035",
          "CSAFPID-32036",
          "CSAFPID-32037"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006",
          "CSAFPID-31007",
          "CSAFPID-31008",
          "CSAFPID-31009",
          "CSAFPID-31010",
          "CSAFPID-31011",
          "CSAFPID-31012",
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018",
          "CSAFPID-31019",
          "CSAFPID-31020",
          "CSAFPID-31021",
          "CSAFPID-31022",
          "CSAFPID-31023",
          "CSAFPID-31024",
          "CSAFPID-31025",
          "CSAFPID-31026",
          "CSAFPID-31027",
          "CSAFPID-31028",
          "CSAFPID-31029",
          "CSAFPID-31030",
          "CSAFPID-31031",
          "CSAFPID-31032",
          "CSAFPID-31033",
          "CSAFPID-31034",
          "CSAFPID-31035",
          "CSAFPID-31036",
          "CSAFPID-31037"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Access to the administrative interfaces should be granted only to trustworthy users.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 8.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 8.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006",
            "CSAFPID-31007",
            "CSAFPID-31008",
            "CSAFPID-31009",
            "CSAFPID-31010",
            "CSAFPID-31011",
            "CSAFPID-31012",
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018",
            "CSAFPID-31019",
            "CSAFPID-31020",
            "CSAFPID-31021",
            "CSAFPID-31022",
            "CSAFPID-31023",
            "CSAFPID-31024",
            "CSAFPID-31025",
            "CSAFPID-31026",
            "CSAFPID-31027",
            "CSAFPID-31028",
            "CSAFPID-31029",
            "CSAFPID-31030",
            "CSAFPID-31031",
            "CSAFPID-31032",
            "CSAFPID-31033",
            "CSAFPID-31034",
            "CSAFPID-31035",
            "CSAFPID-31036",
            "CSAFPID-31037"
          ]
        }
      ],
      "title": "CVE-2024-43385"
    },
    {
      "cve": "CVE-2024-43386",
      "cwe": {
        "id": "CWE-78",
        "name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
      },
      "notes": [
        {
          "audience": "all",
          "category": "description",
          "text": "A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of\nspecial elements in the variable EMAIL_NOTIFICATION.TO in mGuard devices.",
          "title": "Vulnerability Description"
        },
        {
          "audience": "operational management and system administrators",
          "category": "details",
          "text": "Users with privileges to perform configuration changes can trigger the execution of arbitrary OS commands. As these commands are executed with root privileges, this can lead to a privilege escalation.",
          "title": "Vulnerability Impact"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015",
          "CSAFPID-32016",
          "CSAFPID-32017",
          "CSAFPID-32018",
          "CSAFPID-32019",
          "CSAFPID-32020",
          "CSAFPID-32021",
          "CSAFPID-32022",
          "CSAFPID-32023",
          "CSAFPID-32024",
          "CSAFPID-32025",
          "CSAFPID-32026",
          "CSAFPID-32027",
          "CSAFPID-32028",
          "CSAFPID-32029",
          "CSAFPID-32030",
          "CSAFPID-32031",
          "CSAFPID-32032",
          "CSAFPID-32033",
          "CSAFPID-32034",
          "CSAFPID-32035",
          "CSAFPID-32036",
          "CSAFPID-32037"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006",
          "CSAFPID-31007",
          "CSAFPID-31008",
          "CSAFPID-31009",
          "CSAFPID-31010",
          "CSAFPID-31011",
          "CSAFPID-31012",
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018",
          "CSAFPID-31019",
          "CSAFPID-31020",
          "CSAFPID-31021",
          "CSAFPID-31022",
          "CSAFPID-31023",
          "CSAFPID-31024",
          "CSAFPID-31025",
          "CSAFPID-31026",
          "CSAFPID-31027",
          "CSAFPID-31028",
          "CSAFPID-31029",
          "CSAFPID-31030",
          "CSAFPID-31031",
          "CSAFPID-31032",
          "CSAFPID-31033",
          "CSAFPID-31034",
          "CSAFPID-31035",
          "CSAFPID-31036",
          "CSAFPID-31037"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Access to the administrative interfaces should be granted only to trustworthy users.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 8.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 8.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006",
            "CSAFPID-31007",
            "CSAFPID-31008",
            "CSAFPID-31009",
            "CSAFPID-31010",
            "CSAFPID-31011",
            "CSAFPID-31012",
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018",
            "CSAFPID-31019",
            "CSAFPID-31020",
            "CSAFPID-31021",
            "CSAFPID-31022",
            "CSAFPID-31023",
            "CSAFPID-31024",
            "CSAFPID-31025",
            "CSAFPID-31026",
            "CSAFPID-31027",
            "CSAFPID-31028",
            "CSAFPID-31029",
            "CSAFPID-31030",
            "CSAFPID-31031",
            "CSAFPID-31032",
            "CSAFPID-31033",
            "CSAFPID-31034",
            "CSAFPID-31035",
            "CSAFPID-31036",
            "CSAFPID-31037"
          ]
        }
      ],
      "title": "CVE-2024-43386"
    },
    {
      "cve": "CVE-2024-43387",
      "cwe": {
        "id": "CWE-78",
        "name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
      },
      "notes": [
        {
          "audience": "all",
          "category": "description",
          "text": "A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the\nvariable EMAIL_RELAY_PASSWORD in mGuard devices.",
          "title": "Vulnerability Description"
        },
        {
          "audience": "operational management and system administrators",
          "category": "details",
          "text": "Users with privileges to perform configuration changes can trigger misbehavior of a connected curl process. As this process runs with root privileges, this can lead to a privilege escalation.",
          "title": "Vulnerability Impact"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015",
          "CSAFPID-32016",
          "CSAFPID-32017",
          "CSAFPID-32018",
          "CSAFPID-32019",
          "CSAFPID-32020",
          "CSAFPID-32021",
          "CSAFPID-32022",
          "CSAFPID-32023",
          "CSAFPID-32024",
          "CSAFPID-32025",
          "CSAFPID-32026",
          "CSAFPID-32027",
          "CSAFPID-32028",
          "CSAFPID-32029",
          "CSAFPID-32030",
          "CSAFPID-32031",
          "CSAFPID-32032",
          "CSAFPID-32033",
          "CSAFPID-32034",
          "CSAFPID-32035",
          "CSAFPID-32036",
          "CSAFPID-32037"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006",
          "CSAFPID-31007",
          "CSAFPID-31008",
          "CSAFPID-31009",
          "CSAFPID-31010",
          "CSAFPID-31011",
          "CSAFPID-31012",
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018",
          "CSAFPID-31019",
          "CSAFPID-31020",
          "CSAFPID-31021",
          "CSAFPID-31022",
          "CSAFPID-31023",
          "CSAFPID-31024",
          "CSAFPID-31025",
          "CSAFPID-31026",
          "CSAFPID-31027",
          "CSAFPID-31028",
          "CSAFPID-31029",
          "CSAFPID-31030",
          "CSAFPID-31031",
          "CSAFPID-31032",
          "CSAFPID-31033",
          "CSAFPID-31034",
          "CSAFPID-31035",
          "CSAFPID-31036",
          "CSAFPID-31037"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Access to the administrative interfaces should be granted only to trustworthy users.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 8.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 8.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006",
            "CSAFPID-31007",
            "CSAFPID-31008",
            "CSAFPID-31009",
            "CSAFPID-31010",
            "CSAFPID-31011",
            "CSAFPID-31012",
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018",
            "CSAFPID-31019",
            "CSAFPID-31020",
            "CSAFPID-31021",
            "CSAFPID-31022",
            "CSAFPID-31023",
            "CSAFPID-31024",
            "CSAFPID-31025",
            "CSAFPID-31026",
            "CSAFPID-31027",
            "CSAFPID-31028",
            "CSAFPID-31029",
            "CSAFPID-31030",
            "CSAFPID-31031",
            "CSAFPID-31032",
            "CSAFPID-31033",
            "CSAFPID-31034",
            "CSAFPID-31035",
            "CSAFPID-31036",
            "CSAFPID-31037"
          ]
        }
      ],
      "title": "CVE-2024-43387"
    },
    {
      "cve": "CVE-2024-43388",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "notes": [
        {
          "audience": "all",
          "category": "description",
          "text": "A low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation.",
          "title": "Vulnerability Description"
        },
        {
          "audience": "operational management and system administrators",
          "category": "details",
          "text": "Users with privileges to perform configuration changes can trigger covert misbehavior of a connected net-snmp agent.",
          "title": "Vulnerability Impact"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015",
          "CSAFPID-32016",
          "CSAFPID-32017",
          "CSAFPID-32018",
          "CSAFPID-32019",
          "CSAFPID-32020",
          "CSAFPID-32021",
          "CSAFPID-32022",
          "CSAFPID-32023",
          "CSAFPID-32024",
          "CSAFPID-32025",
          "CSAFPID-32026",
          "CSAFPID-32027",
          "CSAFPID-32028",
          "CSAFPID-32029",
          "CSAFPID-32030",
          "CSAFPID-32031",
          "CSAFPID-32032",
          "CSAFPID-32033",
          "CSAFPID-32034",
          "CSAFPID-32035",
          "CSAFPID-32036",
          "CSAFPID-32037"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006",
          "CSAFPID-31007",
          "CSAFPID-31008",
          "CSAFPID-31009",
          "CSAFPID-31010",
          "CSAFPID-31011",
          "CSAFPID-31012",
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018",
          "CSAFPID-31019",
          "CSAFPID-31020",
          "CSAFPID-31021",
          "CSAFPID-31022",
          "CSAFPID-31023",
          "CSAFPID-31024",
          "CSAFPID-31025",
          "CSAFPID-31026",
          "CSAFPID-31027",
          "CSAFPID-31028",
          "CSAFPID-31029",
          "CSAFPID-31030",
          "CSAFPID-31031",
          "CSAFPID-31032",
          "CSAFPID-31033",
          "CSAFPID-31034",
          "CSAFPID-31035",
          "CSAFPID-31036",
          "CSAFPID-31037"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Access to the administrative interfaces should be granted only to trustworthy users.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalScore": 8.8,
            "environmentalSeverity": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 8.8,
            "temporalSeverity": "HIGH",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006",
            "CSAFPID-31007",
            "CSAFPID-31008",
            "CSAFPID-31009",
            "CSAFPID-31010",
            "CSAFPID-31011",
            "CSAFPID-31012",
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018",
            "CSAFPID-31019",
            "CSAFPID-31020",
            "CSAFPID-31021",
            "CSAFPID-31022",
            "CSAFPID-31023",
            "CSAFPID-31024",
            "CSAFPID-31025",
            "CSAFPID-31026",
            "CSAFPID-31027",
            "CSAFPID-31028",
            "CSAFPID-31029",
            "CSAFPID-31030",
            "CSAFPID-31031",
            "CSAFPID-31032",
            "CSAFPID-31033",
            "CSAFPID-31034",
            "CSAFPID-31035",
            "CSAFPID-31036",
            "CSAFPID-31037"
          ]
        }
      ],
      "title": "CVE-2024-43388"
    },
    {
      "cve": "CVE-2024-43389",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "notes": [
        {
          "audience": "all",
          "category": "description",
          "text": "A low privileged remote attacker can perform configuration changes of the ospf service through\nOSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS.",
          "title": "Vulnerability Description"
        },
        {
          "audience": "operational management and system administrators",
          "category": "details",
          "text": "Users with privileges to perform configuration changes can trigger covert misbehavior of a connected ospfd service.",
          "title": "Vulnerability Impact"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015",
          "CSAFPID-32016",
          "CSAFPID-32017",
          "CSAFPID-32018",
          "CSAFPID-32019",
          "CSAFPID-32020",
          "CSAFPID-32021",
          "CSAFPID-32022",
          "CSAFPID-32023",
          "CSAFPID-32024",
          "CSAFPID-32025",
          "CSAFPID-32026",
          "CSAFPID-32027",
          "CSAFPID-32028",
          "CSAFPID-32029",
          "CSAFPID-32030",
          "CSAFPID-32031",
          "CSAFPID-32032",
          "CSAFPID-32033",
          "CSAFPID-32034",
          "CSAFPID-32035",
          "CSAFPID-32036",
          "CSAFPID-32037"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006",
          "CSAFPID-31007",
          "CSAFPID-31008",
          "CSAFPID-31009",
          "CSAFPID-31010",
          "CSAFPID-31011",
          "CSAFPID-31012",
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018",
          "CSAFPID-31019",
          "CSAFPID-31020",
          "CSAFPID-31021",
          "CSAFPID-31022",
          "CSAFPID-31023",
          "CSAFPID-31024",
          "CSAFPID-31025",
          "CSAFPID-31026",
          "CSAFPID-31027",
          "CSAFPID-31028",
          "CSAFPID-31029",
          "CSAFPID-31030",
          "CSAFPID-31031",
          "CSAFPID-31032",
          "CSAFPID-31033",
          "CSAFPID-31034",
          "CSAFPID-31035",
          "CSAFPID-31036",
          "CSAFPID-31037"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Access to the administrative interfaces should be granted only to trustworthy users.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "environmentalScore": 6.5,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 6.5,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006",
            "CSAFPID-31007",
            "CSAFPID-31008",
            "CSAFPID-31009",
            "CSAFPID-31010",
            "CSAFPID-31011",
            "CSAFPID-31012",
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018",
            "CSAFPID-31019",
            "CSAFPID-31020",
            "CSAFPID-31021",
            "CSAFPID-31022",
            "CSAFPID-31023",
            "CSAFPID-31024",
            "CSAFPID-31025",
            "CSAFPID-31026",
            "CSAFPID-31027",
            "CSAFPID-31028",
            "CSAFPID-31029",
            "CSAFPID-31030",
            "CSAFPID-31031",
            "CSAFPID-31032",
            "CSAFPID-31033",
            "CSAFPID-31034",
            "CSAFPID-31035",
            "CSAFPID-31036",
            "CSAFPID-31037"
          ]
        }
      ],
      "title": "CVE-2024-43389"
    },
    {
      "cve": "CVE-2024-43390",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "notes": [
        {
          "audience": "all",
          "category": "description",
          "text": "A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT\nthrough the FW_NAT.IN_IP environment variable which can lead to a DoS.",
          "title": "Vulnerability Description"
        },
        {
          "audience": "operational management and system administrators",
          "category": "details",
          "text": "Users with privileges to perform configuration changes can trigger covert misbehavior within several firewall services, including packet forwarding or NAT.",
          "title": "Vulnerability Impact"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015",
          "CSAFPID-32016",
          "CSAFPID-32017",
          "CSAFPID-32018",
          "CSAFPID-32019",
          "CSAFPID-32020",
          "CSAFPID-32021",
          "CSAFPID-32022",
          "CSAFPID-32023",
          "CSAFPID-32024",
          "CSAFPID-32025",
          "CSAFPID-32026",
          "CSAFPID-32027",
          "CSAFPID-32028",
          "CSAFPID-32029",
          "CSAFPID-32030",
          "CSAFPID-32031",
          "CSAFPID-32032",
          "CSAFPID-32033",
          "CSAFPID-32034",
          "CSAFPID-32035",
          "CSAFPID-32036",
          "CSAFPID-32037"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006",
          "CSAFPID-31007",
          "CSAFPID-31008",
          "CSAFPID-31009",
          "CSAFPID-31010",
          "CSAFPID-31011",
          "CSAFPID-31012",
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018",
          "CSAFPID-31019",
          "CSAFPID-31020",
          "CSAFPID-31021",
          "CSAFPID-31022",
          "CSAFPID-31023",
          "CSAFPID-31024",
          "CSAFPID-31025",
          "CSAFPID-31026",
          "CSAFPID-31027",
          "CSAFPID-31028",
          "CSAFPID-31029",
          "CSAFPID-31030",
          "CSAFPID-31031",
          "CSAFPID-31032",
          "CSAFPID-31033",
          "CSAFPID-31034",
          "CSAFPID-31035",
          "CSAFPID-31036",
          "CSAFPID-31037"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Access to the administrative interfaces should be granted only to trustworthy users.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "environmentalScore": 6.5,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 6.5,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006",
            "CSAFPID-31007",
            "CSAFPID-31008",
            "CSAFPID-31009",
            "CSAFPID-31010",
            "CSAFPID-31011",
            "CSAFPID-31012",
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018",
            "CSAFPID-31019",
            "CSAFPID-31020",
            "CSAFPID-31021",
            "CSAFPID-31022",
            "CSAFPID-31023",
            "CSAFPID-31024",
            "CSAFPID-31025",
            "CSAFPID-31026",
            "CSAFPID-31027",
            "CSAFPID-31028",
            "CSAFPID-31029",
            "CSAFPID-31030",
            "CSAFPID-31031",
            "CSAFPID-31032",
            "CSAFPID-31033",
            "CSAFPID-31034",
            "CSAFPID-31035",
            "CSAFPID-31036",
            "CSAFPID-31037"
          ]
        }
      ],
      "title": "CVE-2024-43390"
    },
    {
      "cve": "CVE-2024-43391",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "notes": [
        {
          "audience": "all",
          "category": "description",
          "text": "A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet\nforwarding, network access control or NAT through the FW_PORTFORWARDING.SRC_IP environment variable which can lead\nto a DoS.",
          "title": "Vulnerability Description"
        },
        {
          "audience": "operational management and system administrators",
          "category": "details",
          "text": "Users with privileges to perform configuration changes can trigger covert misbehavior within all firewall services, including packet filter, packet forwarding, network access control or NAT.",
          "title": "Vulnerability Impact"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015",
          "CSAFPID-32016",
          "CSAFPID-32017",
          "CSAFPID-32018",
          "CSAFPID-32019",
          "CSAFPID-32020",
          "CSAFPID-32021",
          "CSAFPID-32022",
          "CSAFPID-32023",
          "CSAFPID-32024",
          "CSAFPID-32025",
          "CSAFPID-32026",
          "CSAFPID-32027",
          "CSAFPID-32028",
          "CSAFPID-32029",
          "CSAFPID-32030",
          "CSAFPID-32031",
          "CSAFPID-32032",
          "CSAFPID-32033",
          "CSAFPID-32034",
          "CSAFPID-32035",
          "CSAFPID-32036",
          "CSAFPID-32037"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006",
          "CSAFPID-31007",
          "CSAFPID-31008",
          "CSAFPID-31009",
          "CSAFPID-31010",
          "CSAFPID-31011",
          "CSAFPID-31012",
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018",
          "CSAFPID-31019",
          "CSAFPID-31020",
          "CSAFPID-31021",
          "CSAFPID-31022",
          "CSAFPID-31023",
          "CSAFPID-31024",
          "CSAFPID-31025",
          "CSAFPID-31026",
          "CSAFPID-31027",
          "CSAFPID-31028",
          "CSAFPID-31029",
          "CSAFPID-31030",
          "CSAFPID-31031",
          "CSAFPID-31032",
          "CSAFPID-31033",
          "CSAFPID-31034",
          "CSAFPID-31035",
          "CSAFPID-31036",
          "CSAFPID-31037"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Access to the administrative interfaces should be granted only to trustworthy users.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "environmentalScore": 6.5,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 6.5,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006",
            "CSAFPID-31007",
            "CSAFPID-31008",
            "CSAFPID-31009",
            "CSAFPID-31010",
            "CSAFPID-31011",
            "CSAFPID-31012",
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018",
            "CSAFPID-31019",
            "CSAFPID-31020",
            "CSAFPID-31021",
            "CSAFPID-31022",
            "CSAFPID-31023",
            "CSAFPID-31024",
            "CSAFPID-31025",
            "CSAFPID-31026",
            "CSAFPID-31027",
            "CSAFPID-31028",
            "CSAFPID-31029",
            "CSAFPID-31030",
            "CSAFPID-31031",
            "CSAFPID-31032",
            "CSAFPID-31033",
            "CSAFPID-31034",
            "CSAFPID-31035",
            "CSAFPID-31036",
            "CSAFPID-31037"
          ]
        }
      ],
      "title": "CVE-2024-43391"
    },
    {
      "cve": "CVE-2024-43392",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "notes": [
        {
          "audience": "all",
          "category": "description",
          "text": "A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet\nforwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP\nFW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP environment variable which can lead to a DoS.",
          "title": "Vulnerability Description"
        },
        {
          "audience": "operational management and system administrators",
          "category": "details",
          "text": "Users with privileges to perform configuration changes can trigger covert misbehavior within all firewall services, including packet filter, packet forwarding, network access control or NAT.",
          "title": "Vulnerability Impact"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015",
          "CSAFPID-32016",
          "CSAFPID-32017",
          "CSAFPID-32018",
          "CSAFPID-32019",
          "CSAFPID-32020",
          "CSAFPID-32021",
          "CSAFPID-32022",
          "CSAFPID-32023",
          "CSAFPID-32024",
          "CSAFPID-32025",
          "CSAFPID-32026",
          "CSAFPID-32027",
          "CSAFPID-32028",
          "CSAFPID-32029",
          "CSAFPID-32030",
          "CSAFPID-32031"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006",
          "CSAFPID-31007",
          "CSAFPID-31008",
          "CSAFPID-31009",
          "CSAFPID-31010",
          "CSAFPID-31011",
          "CSAFPID-31012",
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018",
          "CSAFPID-31019",
          "CSAFPID-31020",
          "CSAFPID-31021",
          "CSAFPID-31022",
          "CSAFPID-31023",
          "CSAFPID-31024",
          "CSAFPID-31025",
          "CSAFPID-31026",
          "CSAFPID-31027",
          "CSAFPID-31028",
          "CSAFPID-31029",
          "CSAFPID-31030",
          "CSAFPID-31031"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Access to the administrative interfaces should be granted only to trustworthy users.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 or higher which fixes this vulnerability.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "environmentalScore": 6.5,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 6.5,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006",
            "CSAFPID-31007",
            "CSAFPID-31008",
            "CSAFPID-31009",
            "CSAFPID-31010",
            "CSAFPID-31011",
            "CSAFPID-31012",
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018",
            "CSAFPID-31019",
            "CSAFPID-31020",
            "CSAFPID-31021",
            "CSAFPID-31022",
            "CSAFPID-31023",
            "CSAFPID-31024",
            "CSAFPID-31025",
            "CSAFPID-31026",
            "CSAFPID-31027",
            "CSAFPID-31028",
            "CSAFPID-31029",
            "CSAFPID-31030",
            "CSAFPID-31031"
          ]
        }
      ],
      "title": "CVE-2024-43392"
    },
    {
      "cve": "CVE-2024-43393",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "notes": [
        {
          "audience": "all",
          "category": "description",
          "text": "A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet\nforwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP\nFW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP FW_RULESETS.FROM_IP FW_RULESETS.IN_IP environment variable\nwhich can lead to a DoS.",
          "title": "Vulnerability Description"
        },
        {
          "audience": "operational management and system administrators",
          "category": "details",
          "text": "Users with privileges to perform configuration changes can trigger covert misbehavior within all firewall services, including packet filter, packet forwarding, network access control or NAT.",
          "title": "Vulnerability Impact"
        }
      ],
      "product_status": {
        "fixed": [
          "CSAFPID-32001",
          "CSAFPID-32002",
          "CSAFPID-32003",
          "CSAFPID-32004",
          "CSAFPID-32005",
          "CSAFPID-32006",
          "CSAFPID-32007",
          "CSAFPID-32008",
          "CSAFPID-32009",
          "CSAFPID-32010",
          "CSAFPID-32011",
          "CSAFPID-32012",
          "CSAFPID-32013",
          "CSAFPID-32014",
          "CSAFPID-32015",
          "CSAFPID-32016",
          "CSAFPID-32017",
          "CSAFPID-32018",
          "CSAFPID-32019",
          "CSAFPID-32020",
          "CSAFPID-32021",
          "CSAFPID-32022",
          "CSAFPID-32023",
          "CSAFPID-32024",
          "CSAFPID-32025",
          "CSAFPID-32026",
          "CSAFPID-32027",
          "CSAFPID-32028",
          "CSAFPID-32029",
          "CSAFPID-32030",
          "CSAFPID-32031",
          "CSAFPID-32032",
          "CSAFPID-32033",
          "CSAFPID-32034",
          "CSAFPID-32035",
          "CSAFPID-32036",
          "CSAFPID-32037"
        ],
        "known_affected": [
          "CSAFPID-31001",
          "CSAFPID-31002",
          "CSAFPID-31003",
          "CSAFPID-31004",
          "CSAFPID-31005",
          "CSAFPID-31006",
          "CSAFPID-31007",
          "CSAFPID-31008",
          "CSAFPID-31009",
          "CSAFPID-31010",
          "CSAFPID-31011",
          "CSAFPID-31012",
          "CSAFPID-31013",
          "CSAFPID-31014",
          "CSAFPID-31015",
          "CSAFPID-31016",
          "CSAFPID-31017",
          "CSAFPID-31018",
          "CSAFPID-31019",
          "CSAFPID-31020",
          "CSAFPID-31021",
          "CSAFPID-31022",
          "CSAFPID-31023",
          "CSAFPID-31024",
          "CSAFPID-31025",
          "CSAFPID-31026",
          "CSAFPID-31027",
          "CSAFPID-31028",
          "CSAFPID-31029",
          "CSAFPID-31030",
          "CSAFPID-31031",
          "CSAFPID-31032",
          "CSAFPID-31033",
          "CSAFPID-31034",
          "CSAFPID-31035",
          "CSAFPID-31036",
          "CSAFPID-31037"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Access to the administrative interfaces should be granted only to trustworthy users.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.",
          "group_ids": [
            "CSAFGID-0001"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "environmentalScore": 6.5,
            "environmentalSeverity": "MEDIUM",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 6.5,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-31001",
            "CSAFPID-31002",
            "CSAFPID-31003",
            "CSAFPID-31004",
            "CSAFPID-31005",
            "CSAFPID-31006",
            "CSAFPID-31007",
            "CSAFPID-31008",
            "CSAFPID-31009",
            "CSAFPID-31010",
            "CSAFPID-31011",
            "CSAFPID-31012",
            "CSAFPID-31013",
            "CSAFPID-31014",
            "CSAFPID-31015",
            "CSAFPID-31016",
            "CSAFPID-31017",
            "CSAFPID-31018",
            "CSAFPID-31019",
            "CSAFPID-31020",
            "CSAFPID-31021",
            "CSAFPID-31022",
            "CSAFPID-31023",
            "CSAFPID-31024",
            "CSAFPID-31025",
            "CSAFPID-31026",
            "CSAFPID-31027",
            "CSAFPID-31028",
            "CSAFPID-31029",
            "CSAFPID-31030",
            "CSAFPID-31031",
            "CSAFPID-31032",
            "CSAFPID-31033",
            "CSAFPID-31034",
            "CSAFPID-31035",
            "CSAFPID-31036",
            "CSAFPID-31037"
          ]
        }
      ],
      "title": "CVE-2024-43393"
    }
  ]
}

CVE-2024-43384 (GCVE-0-2024-43384)

Vulnerability from cvelistv5 – Published: 2026-05-07 08:37 – Updated: 2026-05-07 14:32

Title

Phoenix Contact: Improper removal of sensitive information in MGUARD products

Summary

A low privileged remote attacker can gain the root password due to improper removal of sensitive information before storage or transfer.

Severity

8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CWE

CWE-212 - Improper Removal of Sensitive Information Before Storage or Transfer

Assigner

CERTVDE

References

1 reference

URL	Tags
https://certvde.com/en/advisories/VDE-2024-039

Impacted products

36 products

Vendor	Product	Version
PHOENIX CONTACT	FL MGUARD 2102	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 2105	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCI	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCIE	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4302	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4305	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD CENTERPORT VPN-1000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX-B	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2005 TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-M	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-P	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)

Credits

Andrea Palanca Nozomi Networks Security Research Team

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-43384",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-07T14:32:17.955380Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-07T14:32:39.199Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2102",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2105",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCI",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCIE",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4302",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4305",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CENTERPORT VPN-1000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX-B",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2005 TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-M",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-P",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Andrea Palanca"
        },
        {
          "lang": "en",
          "type": "reporter",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Nozomi Networks Security Research Team"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eA low privileged remote attacker can gain\u0026nbsp;the root password due to improper removal of sensitive information before storage or transfer.\u003c/span\u003e\u003cbr\u003e"
            }
          ],
          "value": "A low privileged remote attacker can gain\u00a0the root password due to improper removal of sensitive information before storage or transfer."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-212",
              "description": "CWE-212 Improper Removal of Sensitive Information Before Storage or Transfer",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-07T08:37:04.384Z",
        "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "shortName": "CERTVDE"
      },
      "references": [
        {
          "url": "https://certvde.com/en/advisories/VDE-2024-039"
        }
      ],
      "source": {
        "advisory": "VDE-2024-039",
        "defect": [
          "CERT@VDE#641656"
        ],
        "discovery": "UNKNOWN"
      },
      "title": "Phoenix Contact: Improper removal of sensitive information in MGUARD products",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
    "assignerShortName": "CERTVDE",
    "cveId": "CVE-2024-43384",
    "datePublished": "2026-05-07T08:37:04.384Z",
    "dateReserved": "2024-08-12T08:30:16.359Z",
    "dateUpdated": "2026-05-07T14:32:39.199Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-43385 (GCVE-0-2024-43385)

Vulnerability from cvelistv5 – Published: 2024-09-10 08:43 – Updated: 2024-09-10 14:25

Title

Phoenix Contact: OS command execution through PROXY_HTTP_PORT in mGuard devices

Summary

A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices.

Severity

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Assigner

CERTVDE

References

1 reference

URL	Tags
https://cert.vde.com/en/advisories/VDE-2024-039

Impacted products

36 products

Vendor	Product	Version
PHOENIX CONTACT	FL MGUARD 2102	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 2105	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCI	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCIE	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4302	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4305	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD CENTERPORT VPN-1000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX-B	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2005 TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-M	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-P	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)

Credits

Andrea Palanca Nozomi Networks Security Research Team

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:phoenixcontact:fl_mguard_centerport_vpn-1000_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_core_tx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_core_tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_delta_tx\\/tx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_delta_tx\\/tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_gt\\/gt_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_gt\\/gt_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pci4000_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pci4000_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pcie4000_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pcie4000_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs2000_tx\\/tx-b_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs2000_tx\\/tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs2005_tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx-m_firmware:-:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx-p_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4004_tx\\/dtx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4004_tx\\/dtx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_smart2_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_smart2_vpn_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "fl_mguard_smart2_vpn_firmware",
            "vendor": "phoenixcontact",
            "versions": [
              {
                "lessThan": "8.9.3",
                "status": "affected",
                "version": "0",
                "versionType": "semver"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:phoenixcontact:fl_mguard_2102_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_2105_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4102_pcie_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4102_pci_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4302_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4305_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "fl_mguard_4305_firmware",
            "vendor": "phoenixcontact",
            "versions": [
              {
                "lessThan": "10.4.1",
                "status": "affected",
                "version": "0",
                "versionType": "semver"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_3g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_att_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_vzw_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_3g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_att_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_vzw_vpn_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "tc_mguard_rs4000_4g_vzw_vpn_firmware",
            "vendor": "phoenixcontact",
            "versions": [
              {
                "lessThan": "8.9.3",
                "status": "affected",
                "version": "0",
                "versionType": "semver"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-43385",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T14:25:23.534617Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-10T14:25:30.320Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2102",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2105",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCI",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCIE",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4302",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4305",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CENTERPORT VPN-1000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX-B",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2005 TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-M",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-P",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Andrea Palanca"
        },
        {
          "lang": "en",
          "type": "reporter",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Nozomi Networks Security Research Team"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eA low privileged remote attacker can trigger the\u0026nbsp;execution of arbitrary OS commands as root due to improper neutralization of special elements in\u0026nbsp;\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003ethe variable PROXY_HTTP_PORT in\u0026nbsp;\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003emGuard devices.\u003c/span\u003e\u003c/span\u003e\u003cbr\u003e\u003c/span\u003e\u003cbr\u003e"
            }
          ],
          "value": "A low privileged remote attacker can trigger the\u00a0execution of arbitrary OS commands as root due to improper neutralization of special elements in\u00a0the variable PROXY_HTTP_PORT in\u00a0mGuard devices."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-78",
              "description": "CWE-78:Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-09-10T08:43:25.556Z",
        "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "shortName": "CERTVDE"
      },
      "references": [
        {
          "url": "https://cert.vde.com/en/advisories/VDE-2024-039"
        }
      ],
      "source": {
        "advisory": "VDE-2024-039",
        "defect": [
          "CERT@VDE#641656"
        ],
        "discovery": "UNKNOWN"
      },
      "title": "Phoenix Contact: OS command execution through PROXY_HTTP_PORT in\u00a0mGuard devices",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
    "assignerShortName": "CERTVDE",
    "cveId": "CVE-2024-43385",
    "datePublished": "2024-09-10T08:43:25.556Z",
    "dateReserved": "2024-08-12T08:30:16.359Z",
    "dateUpdated": "2024-09-10T14:25:30.320Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-43386 (GCVE-0-2024-43386)

Vulnerability from cvelistv5 – Published: 2024-09-10 08:43 – Updated: 2024-09-10 14:25

Title

Phoenix Contact: OS command execution through EMAIL_NOTIFICATION.TO in mGuard devices.

Summary

A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in mGuard devices.

Severity

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Assigner

CERTVDE

References

1 reference

URL	Tags
https://cert.vde.com/en/advisories/VDE-2024-039

Impacted products

36 products

Vendor	Product	Version
PHOENIX CONTACT	FL MGUARD 2102	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 2105	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCI	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCIE	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4302	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4305	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD CENTERPORT VPN-1000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX-B	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2005 TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-M	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-P	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)

Credits

Andrea Palanca Nozomi Networks Security Research Team

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:phoenixcontact:fl_mguard_centerport_vpn-1000_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_core_tx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_core_tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_delta_tx\\/tx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_delta_tx\\/tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_gt\\/gt_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_gt\\/gt_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pci4000_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pci4000_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pcie4000_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pcie4000_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs2000_tx\\/tx-b_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs2000_tx\\/tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs2005_tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx-m_firmware:-:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx-p_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4004_tx\\/dtx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4004_tx\\/dtx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_smart2_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_smart2_vpn_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "fl_mguard_smart2_vpn_firmware",
            "vendor": "phoenixcontact",
            "versions": [
              {
                "lessThan": "8.9.3",
                "status": "affected",
                "version": "0",
                "versionType": "semver"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:phoenixcontact:fl_mguard_2102_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_2105_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4102_pcie_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4102_pci_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4302_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4305_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "fl_mguard_4305_firmware",
            "vendor": "phoenixcontact",
            "versions": [
              {
                "lessThan": "10.4.1",
                "status": "affected",
                "version": "0",
                "versionType": "semver"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_3g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_att_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_vzw_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_3g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_att_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_vzw_vpn_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "tc_mguard_rs4000_4g_vzw_vpn_firmware",
            "vendor": "phoenixcontact",
            "versions": [
              {
                "lessThan": "8.9.3",
                "status": "affected",
                "version": "0",
                "versionType": "semver"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-43386",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T14:25:00.255471Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-10T14:25:13.169Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2102",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2105",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCI",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCIE",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4302",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4305",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CENTERPORT VPN-1000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX-B",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2005 TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-M",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-P",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Andrea Palanca"
        },
        {
          "lang": "en",
          "type": "reporter",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Nozomi Networks Security Research Team"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eA low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in\u0026nbsp;mGuard devices.\u003c/span\u003e\u003cbr\u003e"
            }
          ],
          "value": "A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in\u00a0mGuard devices."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-78",
              "description": "CWE-78 Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-09-10T08:43:41.392Z",
        "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "shortName": "CERTVDE"
      },
      "references": [
        {
          "url": "https://cert.vde.com/en/advisories/VDE-2024-039"
        }
      ],
      "source": {
        "advisory": "VDE-2024-039",
        "defect": [
          "CERT@VDE#641656"
        ],
        "discovery": "UNKNOWN"
      },
      "title": "Phoenix Contact: OS command execution through EMAIL_NOTIFICATION.TO in\u00a0mGuard devices.",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
    "assignerShortName": "CERTVDE",
    "cveId": "CVE-2024-43386",
    "datePublished": "2024-09-10T08:43:41.392Z",
    "dateReserved": "2024-08-12T08:30:16.359Z",
    "dateUpdated": "2024-09-10T14:25:13.169Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-43387 (GCVE-0-2024-43387)

Vulnerability from cvelistv5 – Published: 2024-09-10 08:43 – Updated: 2024-09-10 14:22

Title

Phoenix Contact: Access files due to improper neutralization of special elements in MGUARD devices

Summary

A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices.

Severity

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Assigner

CERTVDE

References

1 reference

URL	Tags
https://cert.vde.com/en/advisories/VDE-2024-039

Impacted products

36 products

Vendor	Product	Version
PHOENIX CONTACT	FL MGUARD 2102	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 2105	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCI	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCIE	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4302	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4305	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD CENTERPORT VPN-1000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX-B	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2005 TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-M	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-P	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)

Credits

Andrea Palanca Nozomi Networks Security Research Team

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:phoenixcontact:fl_mguard_centerport_vpn-1000_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_core_tx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_core_tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_delta_tx\\/tx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_delta_tx\\/tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_gt\\/gt_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_gt\\/gt_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pci4000_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pci4000_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pcie4000_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pcie4000_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs2000_tx\\/tx-b_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs2000_tx\\/tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs2005_tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx-m_firmware:-:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx-p_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4004_tx\\/dtx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4004_tx\\/dtx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_smart2_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_smart2_vpn_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "fl_mguard_smart2_vpn_firmware",
            "vendor": "phoenixcontact",
            "versions": [
              {
                "lessThan": "8.9.3",
                "status": "affected",
                "version": "0",
                "versionType": "semver"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:phoenixcontact:fl_mguard_2102_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_2105_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4102_pcie_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4102_pci_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4302_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4305_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "fl_mguard_4305_firmware",
            "vendor": "phoenixcontact",
            "versions": [
              {
                "lessThan": "10.4.1",
                "status": "affected",
                "version": "0",
                "versionType": "semver"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_3g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_att_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_vzw_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_3g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_att_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_vzw_vpn_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "tc_mguard_rs4000_4g_vzw_vpn_firmware",
            "vendor": "phoenixcontact",
            "versions": [
              {
                "lessThan": "8.9.3",
                "status": "affected",
                "version": "0",
                "versionType": "semver"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-43387",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T14:22:29.653702Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-10T14:22:52.652Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2102",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2105",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCI",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCIE",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4302",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4305",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CENTERPORT VPN-1000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX-B",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2005 TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-M",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-P",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Andrea Palanca"
        },
        {
          "lang": "en",
          "type": "reporter",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Nozomi Networks Security Research Team"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eA low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices.\u003c/span\u003e\u003cbr\u003e"
            }
          ],
          "value": "A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-78",
              "description": "CWE-78 Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-09-10T08:43:54.155Z",
        "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "shortName": "CERTVDE"
      },
      "references": [
        {
          "url": "https://cert.vde.com/en/advisories/VDE-2024-039"
        }
      ],
      "source": {
        "advisory": "VDE-2024-039",
        "defect": [
          "CERT@VDE#641656"
        ],
        "discovery": "UNKNOWN"
      },
      "title": "Phoenix Contact: Access files due to improper neutralization of special elements in MGUARD devices",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
    "assignerShortName": "CERTVDE",
    "cveId": "CVE-2024-43387",
    "datePublished": "2024-09-10T08:43:54.155Z",
    "dateReserved": "2024-08-12T08:30:16.360Z",
    "dateUpdated": "2024-09-10T14:22:52.652Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-43388 (GCVE-0-2024-43388)

Vulnerability from cvelistv5 – Published: 2024-09-10 08:44 – Updated: 2025-08-22 06:22

Title

Phoenix Contact: SNMP reconfiguration due to improper input validation in MGUARD devices

Summary

A low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation.

Severity

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Assigner

CERTVDE

References

1 reference

URL	Tags
https://cert.vde.com/en/advisories/VDE-2024-039

Impacted products

36 products

Vendor	Product	Version
PHOENIX CONTACT	FL MGUARD 2102	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 2105	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCI	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCIE	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4302	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4305	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD CENTERPORT VPN-1000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX-B	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2005 TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-M	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-P	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)

Credits

Andrea Palanca Nozomi Networks Security Research Team

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:phoenixcontact:fl_mguard_centerport_vpn-1000_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_core_tx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_core_tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_delta_tx\\/tx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_delta_tx\\/tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_gt\\/gt_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_gt\\/gt_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pci4000_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pci4000_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pcie4000_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_pcie4000_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs2000_tx\\/tx-b_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs2000_tx\\/tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs2005_tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx-m_firmware:-:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx-p_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\\/tx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4004_tx\\/dtx_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_rs4004_tx\\/dtx_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_smart2_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_smart2_vpn_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "fl_mguard_smart2_vpn_firmware",
            "vendor": "phoenixcontact",
            "versions": [
              {
                "lessThan": "8.9.3",
                "status": "affected",
                "version": "0",
                "versionType": "semver"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:phoenixcontact:fl_mguard_2102_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_2105_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4102_pcie_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4102_pci_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4302_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:fl_mguard_4305_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "fl_mguard_4305_firmware",
            "vendor": "phoenixcontact",
            "versions": [
              {
                "lessThan": "10.4.1",
                "status": "affected",
                "version": "0",
                "versionType": "semver"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_3g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_att_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_vzw_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_3g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_att_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_vpn_firmware:*:*:*:*:*:*:*:*",
              "cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_vzw_vpn_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "tc_mguard_rs4000_4g_vzw_vpn_firmware",
            "vendor": "phoenixcontact",
            "versions": [
              {
                "lessThan": "8.9.3",
                "status": "affected",
                "version": "0",
                "versionType": "semver"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-43388",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T13:46:11.213014Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-10T14:17:49.005Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2102",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2105",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCI",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCIE",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4302",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4305",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CENTERPORT VPN-1000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX-B",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2005 TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-M",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-P",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Andrea Palanca"
        },
        {
          "lang": "en",
          "type": "reporter",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Nozomi Networks Security Research Team"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eA low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation.\u003cbr\u003e\u003cbr\u003e\u003c/span\u003e\u003cbr\u003e"
            }
          ],
          "value": "A low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-94",
              "description": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-08-22T06:22:30.968Z",
        "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "shortName": "CERTVDE"
      },
      "references": [
        {
          "url": "https://cert.vde.com/en/advisories/VDE-2024-039"
        }
      ],
      "source": {
        "advisory": "VDE-2024-039",
        "defect": [
          "CERT@VDE#641656"
        ],
        "discovery": "UNKNOWN"
      },
      "title": "Phoenix Contact: SNMP reconfiguration due to improper input validation in MGUARD devices",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
    "assignerShortName": "CERTVDE",
    "cveId": "CVE-2024-43388",
    "datePublished": "2024-09-10T08:44:06.550Z",
    "dateReserved": "2024-08-12T08:30:16.360Z",
    "dateUpdated": "2025-08-22T06:22:30.968Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-43389 (GCVE-0-2024-43389)

Vulnerability from cvelistv5 – Published: 2024-09-10 08:44 – Updated: 2025-08-22 06:23

Title

Phoenix Contact: OSPF reconfiguration due to improper input validation in MGUARD devices

Summary

A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS.

Severity

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CWE

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Assigner

CERTVDE

References

1 reference

URL	Tags
https://cert.vde.com/en/advisories/VDE-2024-039

Impacted products

36 products

Vendor	Product	Version
PHOENIX CONTACT	FL MGUARD 2102	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 2105	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCI	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCIE	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4302	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4305	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD CENTERPORT VPN-1000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX-B	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2005 TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-M	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-P	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)

Credits

Andrea Palanca Nozomi Networks Security Research Team

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-43389",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T13:43:32.088676Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-10T13:44:29.029Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2102",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2105",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCI",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCIE",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4302",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4305",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CENTERPORT VPN-1000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX-B",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2005 TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-M",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-P",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Andrea Palanca"
        },
        {
          "lang": "en",
          "type": "reporter",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Nozomi Networks Security Research Team"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eA low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS.\u003c/p\u003e"
            }
          ],
          "value": "A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-94",
              "description": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-08-22T06:23:04.328Z",
        "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "shortName": "CERTVDE"
      },
      "references": [
        {
          "url": "https://cert.vde.com/en/advisories/VDE-2024-039"
        }
      ],
      "source": {
        "advisory": "VDE-2024-039",
        "defect": [
          "CERT@VDE#641656"
        ],
        "discovery": "UNKNOWN"
      },
      "title": "Phoenix Contact: OSPF reconfiguration due to improper input validation in MGUARD devices",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
    "assignerShortName": "CERTVDE",
    "cveId": "CVE-2024-43389",
    "datePublished": "2024-09-10T08:44:19.337Z",
    "dateReserved": "2024-08-12T08:30:16.360Z",
    "dateUpdated": "2025-08-22T06:23:04.328Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-43390 (GCVE-0-2024-43390)

Vulnerability from cvelistv5 – Published: 2024-09-10 08:44 – Updated: 2025-08-22 06:23

Title

Phoenix Contact: Firewall reconfiguration due to improper input validation in MGUARD devices

Summary

A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS.

Severity

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CWE

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Assigner

CERTVDE

References

1 reference

URL	Tags
https://cert.vde.com/en/advisories/VDE-2024-039

Impacted products

36 products

Vendor	Product	Version
PHOENIX CONTACT	FL MGUARD 2102	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 2105	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCI	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCIE	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4302	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4305	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD CENTERPORT VPN-1000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX-B	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2005 TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-M	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-P	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)

Credits

Andrea Palanca Nozomi Networks Security Research Team

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-43390",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T13:43:23.510390Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-10T13:44:10.735Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2102",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2105",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCI",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCIE",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4302",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4305",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CENTERPORT VPN-1000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX-B",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2005 TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-M",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-P",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Andrea Palanca"
        },
        {
          "lang": "en",
          "type": "reporter",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Nozomi Networks Security Research Team"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eA low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS.\u003c/span\u003e\u003cbr\u003e"
            }
          ],
          "value": "A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-94",
              "description": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-08-22T06:23:31.974Z",
        "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "shortName": "CERTVDE"
      },
      "references": [
        {
          "url": "https://cert.vde.com/en/advisories/VDE-2024-039"
        }
      ],
      "source": {
        "advisory": "VDE-2024-039",
        "defect": [
          "CERT@VDE#641656"
        ],
        "discovery": "UNKNOWN"
      },
      "title": "Phoenix Contact: Firewall reconfiguration due to improper input validation in MGUARD devices",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
    "assignerShortName": "CERTVDE",
    "cveId": "CVE-2024-43390",
    "datePublished": "2024-09-10T08:44:30.792Z",
    "dateReserved": "2024-08-12T08:30:16.360Z",
    "dateUpdated": "2025-08-22T06:23:31.974Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-43391 (GCVE-0-2024-43391)

Vulnerability from cvelistv5 – Published: 2024-09-10 08:44 – Updated: 2025-08-22 06:31

Title

Phoenix Contact: Firewall reconfiguration through the FW_PORTFORWARDING.SRC_IP in MGUARD devices

Summary

Severity

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CWE

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Assigner

CERTVDE

References

1 reference

URL	Tags
https://cert.vde.com/en/advisories/VDE-2024-039

Impacted products

36 products

Vendor	Product	Version
PHOENIX CONTACT	FL MGUARD 2102	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 2105	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCI	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCIE	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4302	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4305	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD CENTERPORT VPN-1000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX-B	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2005 TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-M	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-P	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)

Credits

Andrea Palanca Nozomi Networks Security Research Team

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-43391",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T13:43:11.993032Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-10T13:43:56.307Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2102",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2105",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCI",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCIE",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4302",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4305",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CENTERPORT VPN-1000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX-B",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2005 TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-M",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-P",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Andrea Palanca"
        },
        {
          "lang": "en",
          "type": "reporter",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Nozomi Networks Security Research Team"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003e\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eA low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT\u0026nbsp;through the FW_PORTFORWARDING.SRC_IP environment variable which can lead to a DoS.\u003c/span\u003e\u003c/span\u003e\u003cbr\u003e"
            }
          ],
          "value": "A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT\u00a0through the FW_PORTFORWARDING.SRC_IP environment variable which can lead to a DoS."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-94",
              "description": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-08-22T06:31:58.682Z",
        "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "shortName": "CERTVDE"
      },
      "references": [
        {
          "url": "https://cert.vde.com/en/advisories/VDE-2024-039"
        }
      ],
      "source": {
        "advisory": "VDE-2024-039",
        "defect": [
          "CERT@VDE#641656"
        ],
        "discovery": "UNKNOWN"
      },
      "title": "Phoenix Contact: Firewall reconfiguration through the FW_PORTFORWARDING.SRC_IP in MGUARD devices",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
    "assignerShortName": "CERTVDE",
    "cveId": "CVE-2024-43391",
    "datePublished": "2024-09-10T08:44:42.576Z",
    "dateReserved": "2024-08-12T08:30:16.360Z",
    "dateUpdated": "2025-08-22T06:31:58.682Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-43392 (GCVE-0-2024-43392)

Vulnerability from cvelistv5 – Published: 2024-09-10 08:44 – Updated: 2025-08-22 06:32

Title

Phoenix Contact: Firewall reconfiguration through the FW_environment variables in MGUARD devices

Summary

A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP environment variable which can lead to a DoS.

Severity

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CWE

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Assigner

CERTVDE

References

1 reference

URL	Tags
https://cert.vde.com/en/advisories/VDE-2024-039

Impacted products

36 products

Vendor	Product	Version
PHOENIX CONTACT	FL MGUARD 2102	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 2105	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCI	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCIE	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4302	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4305	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD CENTERPORT VPN-1000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX-B	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2005 TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-M	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-P	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)

Credits

Andrea Palanca Nozomi Networks Security Research Team

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-43392",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T13:31:18.258271Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-10T13:31:26.163Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2102",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2105",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCI",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCIE",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4302",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4305",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CENTERPORT VPN-1000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX-B",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2005 TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-M",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-P",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Andrea Palanca"
        },
        {
          "lang": "en",
          "type": "reporter",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Nozomi Networks Security Research Team"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eA low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the\u0026nbsp;FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP  environment variable which can lead to a DoS.\u003c/span\u003e\u003cbr\u003e"
            }
          ],
          "value": "A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the\u00a0FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP  environment variable which can lead to a DoS."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-94",
              "description": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-08-22T06:32:27.638Z",
        "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "shortName": "CERTVDE"
      },
      "references": [
        {
          "url": "https://cert.vde.com/en/advisories/VDE-2024-039"
        }
      ],
      "source": {
        "advisory": "VDE-2024-039",
        "defect": [
          "CERT@VDE#641656"
        ],
        "discovery": "UNKNOWN"
      },
      "title": "Phoenix Contact: Firewall reconfiguration through the FW_environment variables  in MGUARD devices",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
    "assignerShortName": "CERTVDE",
    "cveId": "CVE-2024-43392",
    "datePublished": "2024-09-10T08:44:56.166Z",
    "dateReserved": "2024-08-12T08:30:16.360Z",
    "dateUpdated": "2025-08-22T06:32:27.638Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-43393 (GCVE-0-2024-43393)

Vulnerability from cvelistv5 – Published: 2024-09-10 08:45 – Updated: 2025-08-22 06:32

Title

Phoenix Contact: Configuration changes of the firewall services can lead to DoS in MGUARD devices

Summary

A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP FW_RULESETS.FROM_IP FW_RULESETS.IN_IP environment variable which can lead to a DoS.

Severity

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CWE

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Assigner

CERTVDE

References

1 reference

URL	Tags
https://cert.vde.com/en/advisories/VDE-2024-039

Impacted products

36 products

Vendor	Product	Version
PHOENIX CONTACT	FL MGUARD 2102	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 2105	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCI	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4102 PCIE	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4302	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD 4305	Affected: 0 , < 10.4.1 (semver)
PHOENIX CONTACT	FL MGUARD CENTERPORT VPN-1000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD CORE TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD DELTA TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD GT/GT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCI4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD PCIE4000 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX-B	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS2005 TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-M	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX-P	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4000 TX/TX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD RS4004 TX/DTX VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	FL MGUARD SMART2 VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS2000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 3G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G ATT VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VPN	Affected: 0 , < 8.9.3 (semver)
PHOENIX CONTACT	TC MGUARD RS4000 4G VZW VPN	Affected: 0 , < 8.9.3 (semver)

Credits

Andrea Palanca Nozomi Networks Security Research Team

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-43393",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T13:30:58.571512Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-10T13:31:09.684Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2102",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 2105",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCI",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4102 PCIE",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4302",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD 4305",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "10.4.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CENTERPORT VPN-1000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD CORE TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD DELTA TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD GT/GT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCI4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD PCIE4000 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX-B",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS2005 TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-M",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX-P",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4000 TX/TX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD RS4004 TX/DTX VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FL MGUARD SMART2 VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS2000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 3G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G ATT VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "TC MGUARD RS4000 4G VZW VPN",
          "vendor": "PHOENIX CONTACT",
          "versions": [
            {
              "lessThan": "8.9.3",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Andrea Palanca"
        },
        {
          "lang": "en",
          "type": "reporter",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Nozomi Networks Security Research Team"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003e\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eA low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP FW_RULESETS.FROM_IP FW_RULESETS.IN_IP  environment variable which can lead to a DoS.\u003c/span\u003e\u003c/span\u003e\u003cbr\u003e"
            }
          ],
          "value": "A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP FW_RULESETS.FROM_IP FW_RULESETS.IN_IP  environment variable which can lead to a DoS."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-94",
              "description": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-08-22T06:32:56.194Z",
        "orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
        "shortName": "CERTVDE"
      },
      "references": [
        {
          "url": "https://cert.vde.com/en/advisories/VDE-2024-039"
        }
      ],
      "source": {
        "advisory": "VDE-2024-039",
        "defect": [
          "CERT@VDE#641656"
        ],
        "discovery": "UNKNOWN"
      },
      "title": "Phoenix Contact: Configuration changes of the firewall services can lead to DoS in MGUARD devices",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
    "assignerShortName": "CERTVDE",
    "cveId": "CVE-2024-43393",
    "datePublished": "2024-09-10T08:45:10.306Z",
    "dateReserved": "2024-08-12T08:30:16.360Z",
    "dateUpdated": "2025-08-22T06:32:56.194Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

VDE-2024-039

CVE-2024-43384 (GCVE-0-2024-43384)

CVE-2024-43385 (GCVE-0-2024-43385)

CVE-2024-43386 (GCVE-0-2024-43386)

CVE-2024-43387 (GCVE-0-2024-43387)

CVE-2024-43388 (GCVE-0-2024-43388)

CVE-2024-43389 (GCVE-0-2024-43389)

CVE-2024-43390 (GCVE-0-2024-43390)

CVE-2024-43391 (GCVE-0-2024-43391)

CVE-2024-43392 (GCVE-0-2024-43392)

CVE-2024-43393 (GCVE-0-2024-43393)

Tags

Sightings

Nomenclature