Improper Input Validation vulnerability in PHOENIX CONTACT FL/TC MGUARD Family in multiple versions may allow UDP packets to bypass the filter rules and access the solely connected device behind the MGUARD which can be used for flooding attacks.

Metrics

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00021.

Exploitation none

Automatable yes

Technical Impact partial

Affected Vendors & Products

Vendors Products
Phoenixcontact
  • Fl Mguard 2102
  • Fl Mguard 2102 Firmware
  • Fl Mguard 4102 Pci
  • Fl Mguard 4102 Pci Firmware
  • Fl Mguard 4102 Pcie
  • Fl Mguard 4102 Pcie Firmware
  • Fl Mguard 4302
  • Fl Mguard 4302 Firmware
  • Fl Mguard Centerport
  • Fl Mguard Centerport Firmware
  • Fl Mguard Centerport Vpn-1000
  • Fl Mguard Centerport Vpn-1000 Firmware
  • Fl Mguard Core Tx
  • Fl Mguard Core Tx Firmware
  • Fl Mguard Core Tx Vpn
  • Fl Mguard Core Tx Vpn Firmware
  • Fl Mguard Delta Tx\/tx
  • Fl Mguard Delta Tx\/tx Firmware
  • Fl Mguard Delta Tx\/tx Vpn
  • Fl Mguard Delta Tx\/tx Vpn Firmware
  • Fl Mguard Gt\/gt
  • Fl Mguard Gt\/gt Firmware
  • Fl Mguard Gt\/gt Vpn
  • Fl Mguard Gt\/gt Vpn Firmware
  • Fl Mguard Pci4000
  • Fl Mguard Pci4000 Firmware
  • Fl Mguard Pci4000 Vpn
  • Fl Mguard Pci4000 Vpn Firmware
  • Fl Mguard Pcie4000
  • Fl Mguard Pcie4000 Firmware
  • Fl Mguard Pcie4000 Vpn
  • Fl Mguard Pcie4000 Vpn Firmware
  • Fl Mguard Rs2000 Tx\/tx-b
  • Fl Mguard Rs2000 Tx\/tx-b Firmware
  • Fl Mguard Rs2000 Tx\/tx Vpn
  • Fl Mguard Rs2000 Tx\/tx Vpn Firmware
  • Fl Mguard Rs2005 Tx Vpn
  • Fl Mguard Rs2005 Tx Vpn Firmware
  • Fl Mguard Rs4000 Tx\/tx-m
  • Fl Mguard Rs4000 Tx\/tx-m Firmware
  • Fl Mguard Rs4000 Tx\/tx-p
  • Fl Mguard Rs4000 Tx\/tx-p Firmware
  • Fl Mguard Rs4000 Tx\/tx Vpn
  • Fl Mguard Rs4000 Tx\/tx Vpn Firmware
  • Fl Mguard Rs4004 Tx\/dtx
  • Fl Mguard Rs4004 Tx\/dtx Firmware
  • Fl Mguard Rs4004 Tx\/dtx Vpn
  • Fl Mguard Rs4004 Tx\/dtx Vpn Firmware
  • Fl Mguard Smart2
  • Fl Mguard Smart2 Firmware
  • Fl Mguard Smart2 Vpn
  • Fl Mguard Smart2 Vpn Firmware

Configuration 1 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_2102_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_2102:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_4102_pci_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_4102_pci:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_4102_pcie_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_4102_pcie:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_4302_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_4302:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_centerport_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_centerport:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_centerport_vpn-1000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_centerport_vpn-1000:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_core_tx_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_core_tx:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_core_tx_vpn_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_core_tx_vpn:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_delta_tx\/tx_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_delta_tx\/tx:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_delta_tx\/tx_vpn_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_delta_tx\/tx_vpn:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_gt\/gt_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_gt\/gt:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_gt\/gt_vpn_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_gt\/gt_vpn:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_pci4000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_pci4000:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_pci4000_vpn_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_pci4000_vpn:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_pcie4000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_pcie4000:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_pcie4000_vpn_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_pcie4000_vpn:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_rs2000_tx\/tx-b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_rs2000_tx\/tx-b:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_rs2000_tx\/tx_vpn_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_rs2000_tx\/tx_vpn:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_rs2005_tx_vpn_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_rs2005_tx_vpn:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\/tx-m_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_rs4000_tx\/tx-m:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\/tx-p_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_rs4000_tx\/tx-p:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\/tx_vpn_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_rs4000_tx\/tx_vpn:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_rs4004_tx\/dtx_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_rs4004_tx\/dtx:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_rs4004_tx\/dtx_vpn_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_rs4004_tx\/dtx_vpn:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_smart2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_smart2:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND
cpe:2.3:o:phoenixcontact:fl_mguard_smart2_vpn_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:phoenixcontact:fl_mguard_smart2_vpn:-:*:*:*:*:*:*:*

No data.

No data.

Advisories
Source ID Title
EUVD EUVD EUVD-2023-34137 Improper Input Validation vulnerability in PHOENIX CONTACT FL/TC MGUARD Family in multiple versions may allow UDP packets to bypass the filter rules and access the solely connected device behind the MGUARD which can be used for flooding attacks.
Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://cert.vde.com/en/advisories/VDE-2023-010/ cve-icon cve-icon
History

Fri, 03 Jan 2025 02:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 02 Oct 2024 06:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20

Wed, 02 Oct 2024 05:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-1287
cve-icon MITRE

Status: PUBLISHED

Assigner: CERTVDE

Published:

Updated: 2025-01-03T01:57:54.039Z

Reserved: 2023-05-12T06:13:26.259Z

Link: CVE-2023-2673

cve-icon Vulnrichment

Updated: 2024-08-02T06:33:04.323Z

cve-icon NVD

Status : Modified

Published: 2023-06-13T07:15:46.460

Modified: 2024-11-21T07:59:03.280

Link: CVE-2023-2673

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.