A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://cert.vde.com/en/advisories/VDE-2024-039 |
History
Tue, 10 Sep 2024 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Phoenixcontact
Phoenixcontact fl Mguard 2102 Firmware Phoenixcontact fl Mguard 2105 Firmware Phoenixcontact fl Mguard 4102 Pci Firmware Phoenixcontact fl Mguard 4102 Pcie Firmware Phoenixcontact fl Mguard 4302 Firmware Phoenixcontact fl Mguard 4305 Firmware Phoenixcontact fl Mguard Centerport Vpn-1000 Firmware Phoenixcontact fl Mguard Core Tx Firmware Phoenixcontact fl Mguard Core Tx Vpn Firmware Phoenixcontact fl Mguard Delta Tx\/tx Firmware Phoenixcontact fl Mguard Delta Tx\/tx Vpn Firmware Phoenixcontact fl Mguard Gt\/gt Firmware Phoenixcontact fl Mguard Gt\/gt Vpn Firmware Phoenixcontact fl Mguard Pci4000 Firmware Phoenixcontact fl Mguard Pci4000 Vpn Firmware Phoenixcontact fl Mguard Pcie4000 Firmware Phoenixcontact fl Mguard Pcie4000 Vpn Firmware Phoenixcontact fl Mguard Rs2000 Tx\/tx-b Firmware Phoenixcontact fl Mguard Rs2000 Tx\/tx Vpn Firmware Phoenixcontact fl Mguard Rs2005 Tx Vpn Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx-m Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx-p Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx Vpn Firmware Phoenixcontact fl Mguard Rs4004 Tx\/dtx Firmware Phoenixcontact fl Mguard Rs4004 Tx\/dtx Vpn Firmware Phoenixcontact fl Mguard Smart2 Firmware Phoenixcontact fl Mguard Smart2 Vpn Firmware Phoenixcontact tc Mguard Rs2000 3g Vpn Firmware Phoenixcontact tc Mguard Rs2000 4g Att Vpn Firmware Phoenixcontact tc Mguard Rs2000 4g Vpn Firmware Phoenixcontact tc Mguard Rs2000 4g Vzw Vpn Firmware Phoenixcontact tc Mguard Rs4000 3g Vpn Firmware Phoenixcontact tc Mguard Rs4000 4g Att Vpn Firmware Phoenixcontact tc Mguard Rs4000 4g Vpn Firmware Phoenixcontact tc Mguard Rs4000 4g Vzw Vpn Firmware |
|
CPEs | cpe:2.3:o:phoenixcontact:fl_mguard_2102_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_2105_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_4102_pci_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_4102_pcie_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_4302_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_4305_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_centerport_vpn-1000_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_core_tx_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_core_tx_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_delta_tx\/tx_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_delta_tx\/tx_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_gt\/gt_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_gt\/gt_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_pci4000_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_pci4000_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_pcie4000_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_pcie4000_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs2000_tx\/tx-b_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs2000_tx\/tx_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs2005_tx_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\/tx-m_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\/tx-p_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\/tx_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs4000_tx\/tx_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs4004_tx\/dtx_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_rs4004_tx\/dtx_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_smart2_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:fl_mguard_smart2_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_3g_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_att_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs2000_4g_vzw_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_3g_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_att_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:phoenixcontact:tc_mguard_rs4000_4g_vzw_vpn_firmware:*:*:*:*:*:*:*:* |
|
Vendors & Products |
Phoenixcontact
Phoenixcontact fl Mguard 2102 Firmware Phoenixcontact fl Mguard 2105 Firmware Phoenixcontact fl Mguard 4102 Pci Firmware Phoenixcontact fl Mguard 4102 Pcie Firmware Phoenixcontact fl Mguard 4302 Firmware Phoenixcontact fl Mguard 4305 Firmware Phoenixcontact fl Mguard Centerport Vpn-1000 Firmware Phoenixcontact fl Mguard Core Tx Firmware Phoenixcontact fl Mguard Core Tx Vpn Firmware Phoenixcontact fl Mguard Delta Tx\/tx Firmware Phoenixcontact fl Mguard Delta Tx\/tx Vpn Firmware Phoenixcontact fl Mguard Gt\/gt Firmware Phoenixcontact fl Mguard Gt\/gt Vpn Firmware Phoenixcontact fl Mguard Pci4000 Firmware Phoenixcontact fl Mguard Pci4000 Vpn Firmware Phoenixcontact fl Mguard Pcie4000 Firmware Phoenixcontact fl Mguard Pcie4000 Vpn Firmware Phoenixcontact fl Mguard Rs2000 Tx\/tx-b Firmware Phoenixcontact fl Mguard Rs2000 Tx\/tx Vpn Firmware Phoenixcontact fl Mguard Rs2005 Tx Vpn Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx-m Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx-p Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx Firmware Phoenixcontact fl Mguard Rs4000 Tx\/tx Vpn Firmware Phoenixcontact fl Mguard Rs4004 Tx\/dtx Firmware Phoenixcontact fl Mguard Rs4004 Tx\/dtx Vpn Firmware Phoenixcontact fl Mguard Smart2 Firmware Phoenixcontact fl Mguard Smart2 Vpn Firmware Phoenixcontact tc Mguard Rs2000 3g Vpn Firmware Phoenixcontact tc Mguard Rs2000 4g Att Vpn Firmware Phoenixcontact tc Mguard Rs2000 4g Vpn Firmware Phoenixcontact tc Mguard Rs2000 4g Vzw Vpn Firmware Phoenixcontact tc Mguard Rs4000 3g Vpn Firmware Phoenixcontact tc Mguard Rs4000 4g Att Vpn Firmware Phoenixcontact tc Mguard Rs4000 4g Vpn Firmware Phoenixcontact tc Mguard Rs4000 4g Vzw Vpn Firmware |
|
Metrics |
ssvc
|
Tue, 10 Sep 2024 09:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices. | |
Title | Phoenix Contact: Access files due to improper neutralization of special elements in MGUARD devices | |
Weaknesses | CWE-78 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: CERTVDE
Published: 2024-09-10T08:43:54.155Z
Updated: 2024-09-10T14:22:52.652Z
Reserved: 2024-08-12T08:30:16.360Z
Link: CVE-2024-43387
Vulnrichment
Updated: 2024-09-10T14:22:06.841Z
NVD
Status : Awaiting Analysis
Published: 2024-09-10T09:15:04.690
Modified: 2024-09-10T12:09:50.377
Link: CVE-2024-43387
Redhat
No data.