A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://cert.vde.com/en/advisories/VDE-2024-039 |
History
Tue, 10 Sep 2024 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Phoenixcontact
Phoenixcontact fl Mguard 2102 Firmware Phoenixcontact fl Mguard 2105 Firmware Phoenixcontact fl Mguard 4102 Pci Firmware Phoenixcontact fl Mguard 4102 Pcie Firmware Phoenixcontact fl Mguard 4302 Firmware Phoenixcontact fl Mguard 4305 Firmware Phoenixcontact fl Mguard Centerport Vpn-1000 Firmware Phoenixcontact fl Mguard Core Tx Firmware Phoenixcontact fl Mguard Core Tx Vpn Firmware Phoenixcontact fl Mguard Delta Tx\/tx Firmware Phoenixcontact fl Mguard Delta Tx\/tx Vpn Firmware Phoenixcontact fl Mguard Gt\/gt Firmware Phoenixcontact fl Mguard Gt\/gt Vpn Firmware Phoenixcontact fl Mguard Pci4000 Firmware Phoenixcontact fl Mguard Pci4000 Vpn Firmware Phoenixcontact fl Mguard Pcie4000 Firmware Phoenixcontact fl Mguard Pcie4000 Vpn Firmware Phoenixcontact fl Mguard Rs2000 Tx\/tx-b Firmware Phoenixcontact fl Mguard Rs2000 Tx\/tx Vpn Firmware Phoenixcontact fl Mguard Rs2005 Tx Vpn Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx-m Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx-p Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx Vpn Firmware Phoenixcontact fl Mguard Rs4004 Tx\/dtx Firmware Phoenixcontact fl Mguard Rs4004 Tx\/dtx Vpn Firmware Phoenixcontact fl Mguard Smart2 Firmware Phoenixcontact fl Mguard Smart2 Vpn Firmware Phoenixcontact tc Mguard Rs2000 3g Vpn Firmware Phoenixcontact tc Mguard Rs2000 4g Att Vpn Firmware Phoenixcontact tc Mguard Rs2000 4g Vpn Firmware Phoenixcontact tc Mguard Rs2000 4g Vzw Vpn Firmware Phoenixcontact tc Mguard Rs4000 3g Vpn Firmware Phoenixcontact tc Mguard Rs4000 4g Att Vpn Firmware Phoenixcontact tc Mguard Rs4000 4g Vpn Firmware Phoenixcontact tc Mguard Rs4000 4g Vzw Vpn Firmware |
|
CPEs | cpe:2.3:o:phoenixcontact:fl_mguard_2102_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_2105_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_4102_pci_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_4102_pcie_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_4302_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_4305_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_centerport_vpn-1000_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_core_tx_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_core_tx_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_delta_tx\/tx_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_delta_tx\/tx_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_gt\/gt_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_gt\/gt_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_pci4000_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_pci4000_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_pcie4000_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_pcie4000_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs2000_tx\/tx-b_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs2000_tx\/tx_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs2005_tx_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\/tx-m_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\/tx-p_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\/tx_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\/tx_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs4004_tx\/dtx_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs4004_tx\/dtx_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_smart2_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_smart2_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_3g_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_att_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_vzw_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_3g_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_att_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_vzw_vpn_firmware:*:*:*:*:*:*:*:* |
|
Vendors & Products |
Phoenixcontact
Phoenixcontact fl Mguard 2102 Firmware Phoenixcontact fl Mguard 2105 Firmware Phoenixcontact fl Mguard 4102 Pci Firmware Phoenixcontact fl Mguard 4102 Pcie Firmware Phoenixcontact fl Mguard 4302 Firmware Phoenixcontact fl Mguard 4305 Firmware Phoenixcontact fl Mguard Centerport Vpn-1000 Firmware Phoenixcontact fl Mguard Core Tx Firmware Phoenixcontact fl Mguard Core Tx Vpn Firmware Phoenixcontact fl Mguard Delta Tx\/tx Firmware Phoenixcontact fl Mguard Delta Tx\/tx Vpn Firmware Phoenixcontact fl Mguard Gt\/gt Firmware Phoenixcontact fl Mguard Gt\/gt Vpn Firmware Phoenixcontact fl Mguard Pci4000 Firmware Phoenixcontact fl Mguard Pci4000 Vpn Firmware Phoenixcontact fl Mguard Pcie4000 Firmware Phoenixcontact fl Mguard Pcie4000 Vpn Firmware Phoenixcontact fl Mguard Rs2000 Tx\/tx-b Firmware Phoenixcontact fl Mguard Rs2000 Tx\/tx Vpn Firmware Phoenixcontact fl Mguard Rs2005 Tx Vpn Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx-m Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx-p Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx Vpn Firmware Phoenixcontact fl Mguard Rs4004 Tx\/dtx Firmware Phoenixcontact fl Mguard Rs4004 Tx\/dtx Vpn Firmware Phoenixcontact fl Mguard Smart2 Firmware Phoenixcontact fl Mguard Smart2 Vpn Firmware Phoenixcontact tc Mguard Rs2000 3g Vpn Firmware Phoenixcontact tc Mguard Rs2000 4g Att Vpn Firmware Phoenixcontact tc Mguard Rs2000 4g Vpn Firmware Phoenixcontact tc Mguard Rs2000 4g Vzw Vpn Firmware Phoenixcontact tc Mguard Rs4000 3g Vpn Firmware Phoenixcontact tc Mguard Rs4000 4g Att Vpn Firmware Phoenixcontact tc Mguard Rs4000 4g Vpn Firmware Phoenixcontact tc Mguard Rs4000 4g Vzw Vpn Firmware |
|
Metrics |
ssvc
|
Tue, 10 Sep 2024 08:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices. | |
Title | Phoenix Contact: OS command execution through PROXY_HTTP_PORT in mGuard devices | |
Weaknesses | CWE-78 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: CERTVDE
Published: 2024-09-10T08:43:25.556Z
Updated: 2024-09-10T14:25:30.320Z
Reserved: 2024-08-12T08:30:16.359Z
Link: CVE-2024-43385
Vulnrichment
Updated: 2024-09-10T14:24:38.074Z
NVD
Status : Awaiting Analysis
Published: 2024-09-10T09:15:04.150
Modified: 2024-09-10T12:09:50.377
Link: CVE-2024-43385
Redhat
No data.