VDE-2024-052
Vulnerability from csaf_phoenixcontactgmbhcokg - Published: 2024-09-10 10:00 - Updated: 2025-05-14 13:00Summary
Phoenix Contact: Multiple mGuard devices are vulnerable to a drain of open file descriptors.
Severity
Medium
Notes
Summary: The pathfinder TCP encapsulation service is vulnerable to a drain of open file descriptors.
Impact: Attackers can trigger a denial-of-service of the pathfinder TCP encapsulation service.
Mitigation: Access to the listen port of the pathfinder TCP encapsulation service should be limited to trustworthy networks or peers.
Remediation: Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fix this vulnerability.
General Recommendation: For general information and recommendations on security measures refer to the mGuard documentation: https://help.mguard.com/en/documentation
Product Description: mGuards are industrial routers and security appliances
An unauthenticated remote attacker can exploit the behavior of the pathfinder TCP encapsulation service by establishing a high number of TCP connections to the pathfinder TCP encapsulation service. The impact is limited to blocking of valid IPsec VPN peers.
5.3 (Medium)
Mitigation
If possible, access to the listen port of the pathfinder TCP encapsulation service should be limited to trustworthy networks or peers.
Vendor Fix
Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.
References
| URL | Category | |
|---|---|---|
Acknowledgments
CERT@VDE
certvde.com
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
}
],
"aggregate_severity": {
"namespace": "https://www.first.org/cvss/v3.1/specification-document#Qualitative-Severity-Rating-Scale",
"text": "medium"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "summary",
"text": "The pathfinder TCP encapsulation service is vulnerable to a drain of open file descriptors.",
"title": "Summary"
},
{
"category": "description",
"text": "Attackers can trigger a denial-of-service of the pathfinder TCP encapsulation service.",
"title": "Impact"
},
{
"category": "description",
"text": "Access to the listen port of the pathfinder TCP encapsulation service should be limited to trustworthy networks or peers.",
"title": "Mitigation"
},
{
"category": "description",
"text": "Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fix this vulnerability.",
"title": "Remediation"
},
{
"category": "general",
"text": "For general information and recommendations on security measures refer to the mGuard documentation: https://help.mguard.com/en/documentation",
"title": "General Recommendation"
},
{
"category": "description",
"text": "mGuards are industrial routers and security appliances",
"title": "Product Description"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@phoenixcontact.com",
"name": "Phoenix Contact GmbH \u0026 Co. KG",
"namespace": "https://phoenixcontact.com/psirt"
},
"references": [
{
"category": "external",
"summary": "PCSA-2024/00010: mGuard firmware \u003c8.9.3 / 10.4.1 is vulnerable to a drain of open file descriptors.",
"url": "https://phoenixcontact.com/psirt"
},
{
"category": "external",
"summary": "Phoenix Contact PSIRT",
"url": "https://phoenixcontact.com/psirt"
},
{
"category": "external",
"summary": "Phoenix Contact advisory overview at CERT@VDE",
"url": "https://certvde.com/de/advisories/vendor/phoenixcontact/"
},
{
"category": "self",
"summary": "VDE-2024-052: Phoenix Contact: Multiple mGuard devices are vulnerable to a drain of open file descriptors. - HTML",
"url": "https://certvde.com/en/advisories/VDE-2024-052"
},
{
"category": "self",
"summary": "VDE-2024-052: Phoenix Contact: Multiple mGuard devices are vulnerable to a drain of open file descriptors. - CSAF",
"url": "https://phoenixcontact.csaf-tp.certvde.com/.well-known/csaf/white/2024/vde-2024-052.json"
}
],
"title": "Phoenix Contact: Multiple mGuard devices are vulnerable to a drain of open file descriptors.",
"tracking": {
"aliases": [
"VDE-2024-052",
"PCSA-2024/00010"
],
"current_release_date": "2025-05-14T13:00:14.000Z",
"generator": {
"date": "2024-09-03T06:45:51.128Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.11"
}
},
"id": "VDE-2024-052",
"initial_release_date": "2024-09-10T10:00:00.000Z",
"revision_history": [
{
"date": "2024-09-10T10:00:00.000Z",
"number": "1",
"summary": "Initial revision."
},
{
"date": "2024-11-06T11:27:01.000Z",
"number": "2",
"summary": "Fix: correct certvde domain, added self-reference"
},
{
"date": "2025-04-10T13:00:00.000Z",
"number": "3",
"summary": "Fixed current csaf reference URL"
},
{
"date": "2025-05-14T13:00:14.000Z",
"number": "4",
"summary": "Fix: added distribution"
}
],
"status": "final",
"version": "4"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "FL MGUARD RS2000 TX/TX VPN",
"product": {
"name": "FL MGUARD RS2000 TX/TX VPN",
"product_id": "CSAFPID-11001",
"product_identification_helper": {
"model_numbers": [
"2700642"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS2005 TX VPN",
"product": {
"name": "FL MGUARD RS2005 TX VPN",
"product_id": "CSAFPID-11002",
"product_identification_helper": {
"model_numbers": [
"2701875"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS2000 3G VPN",
"product": {
"name": "TC MGUARD RS2000 3G VPN",
"product_id": "CSAFPID-11003",
"product_identification_helper": {
"model_numbers": [
"2903441"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS4000 TX/TX",
"product": {
"name": "FL MGUARD RS4000 TX/TX",
"product_id": "CSAFPID-11004",
"product_identification_helper": {
"model_numbers": [
"2700634"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS4000 TX/TX VPN",
"product": {
"name": "FL MGUARD RS4000 TX/TX VPN",
"product_id": "CSAFPID-11005",
"product_identification_helper": {
"model_numbers": [
"2200515"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS4004 TX/DTX",
"product": {
"name": "FL MGUARD RS4004 TX/DTX",
"product_id": "CSAFPID-11006",
"product_identification_helper": {
"model_numbers": [
"2701876"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS4004 TX/DTX VPN",
"product": {
"name": "FL MGUARD RS4004 TX/DTX VPN",
"product_id": "CSAFPID-11007",
"product_identification_helper": {
"model_numbers": [
"2701877"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS4000 3G VPN",
"product": {
"name": "TC MGUARD RS4000 3G VPN",
"product_id": "CSAFPID-11008",
"product_identification_helper": {
"model_numbers": [
"2903440"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS2000 TX/TX-B",
"product": {
"name": "FL MGUARD RS2000 TX/TX-B",
"product_id": "CSAFPID-11009",
"product_identification_helper": {
"model_numbers": [
"2702139"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS4000 TX/TX-P",
"product": {
"name": "FL MGUARD RS4000 TX/TX-P",
"product_id": "CSAFPID-11010",
"product_identification_helper": {
"model_numbers": [
"2702259"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS4000 TX/TX-M",
"product": {
"name": "FL MGUARD RS4000 TX/TX-M",
"product_id": "CSAFPID-11011",
"product_identification_helper": {
"model_numbers": [
"2702470"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD PCI4000",
"product": {
"name": "FL MGUARD PCI4000",
"product_id": "CSAFPID-11012",
"product_identification_helper": {
"model_numbers": [
"2701274"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD PCI4000 VPN",
"product": {
"name": "FL MGUARD PCI4000 VPN",
"product_id": "CSAFPID-11013",
"product_identification_helper": {
"model_numbers": [
"2701275"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD PCIE4000",
"product": {
"name": "FL MGUARD PCIE4000",
"product_id": "CSAFPID-11014",
"product_identification_helper": {
"model_numbers": [
"2701277"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD PCIE4000 VPN",
"product": {
"name": "FL MGUARD PCIE4000 VPN",
"product_id": "CSAFPID-11015",
"product_identification_helper": {
"model_numbers": [
"2701278"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD DELTA TX/TX",
"product": {
"name": "FL MGUARD DELTA TX/TX",
"product_id": "CSAFPID-11016",
"product_identification_helper": {
"model_numbers": [
"2700967"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD DELTA TX/TX VPN",
"product": {
"name": "FL MGUARD DELTA TX/TX VPN",
"product_id": "CSAFPID-11017",
"product_identification_helper": {
"model_numbers": [
"2700968"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD SMART2",
"product": {
"name": "FL MGUARD SMART2",
"product_id": "CSAFPID-11018",
"product_identification_helper": {
"model_numbers": [
"2700640"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD SMART2 VPN",
"product": {
"name": "FL MGUARD SMART2 VPN",
"product_id": "CSAFPID-11019",
"product_identification_helper": {
"model_numbers": [
"2700639"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD CORE TX",
"product": {
"name": "FL MGUARD CORE TX",
"product_id": "CSAFPID-11020",
"product_identification_helper": {
"model_numbers": [
"2702884"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD CORE TX VPN",
"product": {
"name": "FL MGUARD CORE TX VPN",
"product_id": "CSAFPID-11021",
"product_identification_helper": {
"model_numbers": [
"2702831"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS2000 4G VPN",
"product": {
"name": "TC MGUARD RS2000 4G VPN",
"product_id": "CSAFPID-11022",
"product_identification_helper": {
"model_numbers": [
"2903588"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS4000 4G VPN",
"product": {
"name": "TC MGUARD RS4000 4G VPN",
"product_id": "CSAFPID-11023",
"product_identification_helper": {
"model_numbers": [
"2903586"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS4000 4G VZW VPN",
"product": {
"name": "TC MGUARD RS4000 4G VZW VPN",
"product_id": "CSAFPID-11024",
"product_identification_helper": {
"model_numbers": [
"1010461"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS2000 4G VZW VPN",
"product": {
"name": "TC MGUARD RS2000 4G VZW VPN",
"product_id": "CSAFPID-11025",
"product_identification_helper": {
"model_numbers": [
"1010462"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS4000 4G ATT VPN",
"product": {
"name": "TC MGUARD RS4000 4G ATT VPN",
"product_id": "CSAFPID-11026",
"product_identification_helper": {
"model_numbers": [
"1010463"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS2000 4G ATT VPN",
"product": {
"name": "TC MGUARD RS2000 4G ATT VPN",
"product_id": "CSAFPID-11027",
"product_identification_helper": {
"model_numbers": [
"1010464"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD GT/GT",
"product": {
"name": "FL MGUARD GT/GT",
"product_id": "CSAFPID-11028",
"product_identification_helper": {
"model_numbers": [
"2700197"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD GT/GT VPN",
"product": {
"name": "FL MGUARD GT/GT VPN",
"product_id": "CSAFPID-11029",
"product_identification_helper": {
"model_numbers": [
"2700198"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD CENTERPORT",
"product": {
"name": "FL MGUARD CENTERPORT",
"product_id": "CSAFPID-11030",
"product_identification_helper": {
"model_numbers": [
"2702547"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD CENTERPORT VPN-1000",
"product": {
"name": "FL MGUARD CENTERPORT VPN-1000",
"product_id": "CSAFPID-11031",
"product_identification_helper": {
"model_numbers": [
"2702820"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD 2102",
"product": {
"name": "FL MGUARD 2102",
"product_id": "CSAFPID-11032",
"product_identification_helper": {
"model_numbers": [
"1357828"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD 2105",
"product": {
"name": "FL MGUARD 2105",
"product_id": "CSAFPID-11033",
"product_identification_helper": {
"model_numbers": [
"1357850"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD 4302",
"product": {
"name": "FL MGUARD 4302",
"product_id": "CSAFPID-11034",
"product_identification_helper": {
"model_numbers": [
"1357840"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD 4305",
"product": {
"name": "FL MGUARD 4305",
"product_id": "CSAFPID-11035",
"product_identification_helper": {
"model_numbers": [
"1357875"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD 4102 PCIE",
"product": {
"name": "FL MGUARD 4102 PCIE",
"product_id": "CSAFPID-11036",
"product_identification_helper": {
"model_numbers": [
"1357842"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD 4102 PCI",
"product": {
"name": "FL MGUARD 4102 PCI",
"product_id": "CSAFPID-11037",
"product_identification_helper": {
"model_numbers": [
"1441187"
]
}
}
}
],
"category": "product_family",
"name": "Hardware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c8.9.3",
"product": {
"name": "Firmware \u003c8.9.3",
"product_id": "CSAFPID-21892"
}
},
{
"category": "product_version",
"name": "8.9.3",
"product": {
"name": "Firmware 8.9.3",
"product_id": "CSAFPID-22893"
}
},
{
"category": "product_version_range",
"name": "\u003c10.4.1",
"product": {
"name": "Firmware \u003c10.4.1",
"product_id": "CSAFPID-21040"
}
},
{
"category": "product_version",
"name": "10.4.1",
"product": {
"name": "Firmware 10.4.1",
"product_id": "CSAFPID-22041"
}
}
],
"category": "product_family",
"name": "Firmware"
}
],
"category": "vendor",
"name": "Phoenix Contact"
}
],
"product_groups": [
{
"group_id": "CSAFGID-0001",
"product_ids": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006",
"CSAFPID-31007",
"CSAFPID-31008",
"CSAFPID-31009",
"CSAFPID-31010",
"CSAFPID-31011",
"CSAFPID-31012",
"CSAFPID-31013",
"CSAFPID-31014",
"CSAFPID-31015",
"CSAFPID-31016",
"CSAFPID-31017",
"CSAFPID-31018",
"CSAFPID-31019",
"CSAFPID-31020",
"CSAFPID-31021",
"CSAFPID-31022",
"CSAFPID-31023",
"CSAFPID-31024",
"CSAFPID-31025",
"CSAFPID-31026",
"CSAFPID-31027",
"CSAFPID-31028",
"CSAFPID-31029",
"CSAFPID-31030",
"CSAFPID-31031",
"CSAFPID-31032",
"CSAFPID-31033",
"CSAFPID-31034",
"CSAFPID-31035",
"CSAFPID-31036",
"CSAFPID-31037"
],
"summary": "Affected Products."
},
{
"group_id": "CSAFGID-0002",
"product_ids": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003",
"CSAFPID-32004",
"CSAFPID-32005",
"CSAFPID-32006",
"CSAFPID-32007",
"CSAFPID-32008",
"CSAFPID-32009",
"CSAFPID-32010",
"CSAFPID-32011",
"CSAFPID-32012",
"CSAFPID-32013",
"CSAFPID-32014",
"CSAFPID-32015",
"CSAFPID-32016",
"CSAFPID-32017",
"CSAFPID-32018",
"CSAFPID-32019",
"CSAFPID-32020",
"CSAFPID-32021",
"CSAFPID-32022",
"CSAFPID-32023",
"CSAFPID-32024",
"CSAFPID-32025",
"CSAFPID-32026",
"CSAFPID-32027",
"CSAFPID-32028",
"CSAFPID-32029",
"CSAFPID-32030",
"CSAFPID-32031",
"CSAFPID-32032",
"CSAFPID-32033",
"CSAFPID-32034",
"CSAFPID-32035",
"CSAFPID-32036",
"CSAFPID-32037"
],
"summary": "Fixed Products."
}
],
"relationships": [
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD RS2000 TX/TX VPN",
"product_id": "CSAFPID-31001"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD RS2005 TX VPN",
"product_id": "CSAFPID-31002"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11002"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on TC MGUARD RS2000 3G VPN",
"product_id": "CSAFPID-31003"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11003"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD RS4000 TX/TX",
"product_id": "CSAFPID-31004"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11004"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD RS4000 TX/TX VPN",
"product_id": "CSAFPID-31005"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11005"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD RS4004 TX/DTX",
"product_id": "CSAFPID-31006"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11006"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD RS4004 TX/DTX VPN",
"product_id": "CSAFPID-31007"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11007"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on TC MGUARD RS4000 3G VPN",
"product_id": "CSAFPID-31008"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11008"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD RS2000 TX/TX-B",
"product_id": "CSAFPID-31009"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11009"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD RS4000 TX/TX-P",
"product_id": "CSAFPID-31010"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11010"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD RS4000 TX/TX-M",
"product_id": "CSAFPID-31011"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11011"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD PCI4000",
"product_id": "CSAFPID-31012"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11012"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD PCI4000 VPN",
"product_id": "CSAFPID-31013"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11013"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD PCIE4000",
"product_id": "CSAFPID-31014"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11014"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD PCIE4000 VPN",
"product_id": "CSAFPID-31015"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11015"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD DELTA TX/TX",
"product_id": "CSAFPID-31016"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11016"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD DELTA TX/TX VPN",
"product_id": "CSAFPID-31017"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11017"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD SMART2",
"product_id": "CSAFPID-31018"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11018"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD SMART2 VPN",
"product_id": "CSAFPID-31019"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11019"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD CORE TX",
"product_id": "CSAFPID-31020"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11020"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD CORE TX VPN",
"product_id": "CSAFPID-31021"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11021"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on TC MGUARD RS2000 4G VPN",
"product_id": "CSAFPID-31022"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11022"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on TC MGUARD RS4000 4G VPN",
"product_id": "CSAFPID-31023"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11023"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on TC MGUARD RS4000 4G VZW VPN",
"product_id": "CSAFPID-31024"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11024"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on TC MGUARD RS2000 4G VZW VPN",
"product_id": "CSAFPID-31025"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11025"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on TC MGUARD RS4000 4G ATT VPN",
"product_id": "CSAFPID-31026"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11026"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on TC MGUARD RS2000 4G ATT VPN",
"product_id": "CSAFPID-31027"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11027"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD GT/GT",
"product_id": "CSAFPID-31028"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11028"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD GT/GT VPN",
"product_id": "CSAFPID-31029"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11029"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD CENTERPORT",
"product_id": "CSAFPID-31030"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11030"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c8.9.3 installed on FL MGUARD CENTERPORT VPN-1000",
"product_id": "CSAFPID-31031"
},
"product_reference": "CSAFPID-21892",
"relates_to_product_reference": "CSAFPID-11031"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c10.4.1 installed on FL MGUARD 2102",
"product_id": "CSAFPID-31032"
},
"product_reference": "CSAFPID-21040",
"relates_to_product_reference": "CSAFPID-11032"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c10.4.1 installed on FL MGUARD 2105",
"product_id": "CSAFPID-31033"
},
"product_reference": "CSAFPID-21040",
"relates_to_product_reference": "CSAFPID-11033"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c10.4.1 installed on FL MGUARD 4302",
"product_id": "CSAFPID-31034"
},
"product_reference": "CSAFPID-21040",
"relates_to_product_reference": "CSAFPID-11034"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c10.4.1 installed on FL MGUARD 4305",
"product_id": "CSAFPID-31035"
},
"product_reference": "CSAFPID-21040",
"relates_to_product_reference": "CSAFPID-11035"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c10.4.1 installed on FL MGUARD 4102 PCIE",
"product_id": "CSAFPID-31036"
},
"product_reference": "CSAFPID-21040",
"relates_to_product_reference": "CSAFPID-11036"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c10.4.1 installed on FL MGUARD 4102 PCI",
"product_id": "CSAFPID-31037"
},
"product_reference": "CSAFPID-21040",
"relates_to_product_reference": "CSAFPID-11037"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD RS2000 TX/TX VPN",
"product_id": "CSAFPID-32001"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD RS2005 TX VPN",
"product_id": "CSAFPID-32002"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11002"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on TC MGUARD RS2000 3G VPN",
"product_id": "CSAFPID-32003"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11003"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD RS4000 TX/TX",
"product_id": "CSAFPID-32004"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11004"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD RS4000 TX/TX VPN",
"product_id": "CSAFPID-32005"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11005"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD RS4004 TX/DTX",
"product_id": "CSAFPID-32006"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11006"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD RS4004 TX/DTX VPN",
"product_id": "CSAFPID-32007"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11007"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on TC MGUARD RS4000 3G VPN",
"product_id": "CSAFPID-32008"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11008"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD RS2000 TX/TX-B",
"product_id": "CSAFPID-32009"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11009"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD RS4000 TX/TX-P",
"product_id": "CSAFPID-32010"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11010"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD RS4000 TX/TX-M",
"product_id": "CSAFPID-32011"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11011"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD PCI4000",
"product_id": "CSAFPID-32012"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11012"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD PCI4000 VPN",
"product_id": "CSAFPID-32013"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11013"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD PCIE4000",
"product_id": "CSAFPID-32014"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11014"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD PCIE4000 VPN",
"product_id": "CSAFPID-32015"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11015"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD DELTA TX/TX",
"product_id": "CSAFPID-32016"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11016"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD DELTA TX/TX VPN",
"product_id": "CSAFPID-32017"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11017"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD SMART2",
"product_id": "CSAFPID-32018"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11018"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD SMART2 VPN",
"product_id": "CSAFPID-32019"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11019"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD CORE TX",
"product_id": "CSAFPID-32020"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11020"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD CORE TX VPN",
"product_id": "CSAFPID-32021"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11021"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on TC MGUARD RS2000 4G VPN",
"product_id": "CSAFPID-32022"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11022"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on TC MGUARD RS4000 4G VPN",
"product_id": "CSAFPID-32023"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11023"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on TC MGUARD RS4000 4G VZW VPN",
"product_id": "CSAFPID-32024"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11024"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on TC MGUARD RS2000 4G VZW VPN",
"product_id": "CSAFPID-32025"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11025"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on TC MGUARD RS4000 4G ATT VPN",
"product_id": "CSAFPID-32026"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11026"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on TC MGUARD RS2000 4G ATT VPN",
"product_id": "CSAFPID-32027"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11027"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD GT/GT",
"product_id": "CSAFPID-32028"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11028"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD GT/GT VPN",
"product_id": "CSAFPID-32029"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11029"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD CENTERPORT",
"product_id": "CSAFPID-32030"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11030"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.9.3 installed on FL MGUARD CENTERPORT VPN-1000",
"product_id": "CSAFPID-32031"
},
"product_reference": "CSAFPID-22893",
"relates_to_product_reference": "CSAFPID-11031"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 10.4.1 installed on FL MGUARD 2102",
"product_id": "CSAFPID-32032"
},
"product_reference": "CSAFPID-22041",
"relates_to_product_reference": "CSAFPID-11032"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 10.4.1 installed on FL MGUARD 2105",
"product_id": "CSAFPID-32033"
},
"product_reference": "CSAFPID-22041",
"relates_to_product_reference": "CSAFPID-11033"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 10.4.1 installed on FL MGUARD 4302",
"product_id": "CSAFPID-32034"
},
"product_reference": "CSAFPID-22041",
"relates_to_product_reference": "CSAFPID-11034"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 10.4.1 installed on FL MGUARD 4305",
"product_id": "CSAFPID-32035"
},
"product_reference": "CSAFPID-22041",
"relates_to_product_reference": "CSAFPID-11035"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 10.4.1 installed on FL MGUARD 4102 PCIE",
"product_id": "CSAFPID-32036"
},
"product_reference": "CSAFPID-22041",
"relates_to_product_reference": "CSAFPID-11036"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 10.4.1 installed on FL MGUARD 4102 PCI",
"product_id": "CSAFPID-32037"
},
"product_reference": "CSAFPID-22041",
"relates_to_product_reference": "CSAFPID-11037"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-7734",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An unauthenticated remote attacker can\u00a0exploit the behavior of the\u00a0pathfinder TCP encapsulation service by establishing a high number of TCP connections to the pathfinder TCP encapsulation service. The impact is limited to\u00a0blocking of valid IPsec VPN peers.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003",
"CSAFPID-32004",
"CSAFPID-32005",
"CSAFPID-32006",
"CSAFPID-32007",
"CSAFPID-32008",
"CSAFPID-32009",
"CSAFPID-32010",
"CSAFPID-32011",
"CSAFPID-32012",
"CSAFPID-32013",
"CSAFPID-32014",
"CSAFPID-32015",
"CSAFPID-32016",
"CSAFPID-32017",
"CSAFPID-32018",
"CSAFPID-32019",
"CSAFPID-32020",
"CSAFPID-32021",
"CSAFPID-32022",
"CSAFPID-32023",
"CSAFPID-32024",
"CSAFPID-32025",
"CSAFPID-32026",
"CSAFPID-32027",
"CSAFPID-32028",
"CSAFPID-32029",
"CSAFPID-32030",
"CSAFPID-32031",
"CSAFPID-32032",
"CSAFPID-32033",
"CSAFPID-32034",
"CSAFPID-32035",
"CSAFPID-32036",
"CSAFPID-32037"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006",
"CSAFPID-31007",
"CSAFPID-31008",
"CSAFPID-31009",
"CSAFPID-31010",
"CSAFPID-31011",
"CSAFPID-31012",
"CSAFPID-31013",
"CSAFPID-31014",
"CSAFPID-31015",
"CSAFPID-31016",
"CSAFPID-31017",
"CSAFPID-31018",
"CSAFPID-31019",
"CSAFPID-31020",
"CSAFPID-31021",
"CSAFPID-31022",
"CSAFPID-31023",
"CSAFPID-31024",
"CSAFPID-31025",
"CSAFPID-31026",
"CSAFPID-31027",
"CSAFPID-31028",
"CSAFPID-31029",
"CSAFPID-31030",
"CSAFPID-31031",
"CSAFPID-31032",
"CSAFPID-31033",
"CSAFPID-31034",
"CSAFPID-31035",
"CSAFPID-31036",
"CSAFPID-31037"
]
},
"remediations": [
{
"category": "mitigation",
"details": "If possible, access to the listen port of the pathfinder TCP encapsulation service should be limited to trustworthy networks or peers.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fixes this vulnerability.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006",
"CSAFPID-31007",
"CSAFPID-31008",
"CSAFPID-31009",
"CSAFPID-31010",
"CSAFPID-31011",
"CSAFPID-31012",
"CSAFPID-31013",
"CSAFPID-31014",
"CSAFPID-31015",
"CSAFPID-31016",
"CSAFPID-31017",
"CSAFPID-31018",
"CSAFPID-31019",
"CSAFPID-31020",
"CSAFPID-31021",
"CSAFPID-31022",
"CSAFPID-31023",
"CSAFPID-31024",
"CSAFPID-31025",
"CSAFPID-31026",
"CSAFPID-31027",
"CSAFPID-31028",
"CSAFPID-31029",
"CSAFPID-31030",
"CSAFPID-31031",
"CSAFPID-31032",
"CSAFPID-31033",
"CSAFPID-31034",
"CSAFPID-31035",
"CSAFPID-31036",
"CSAFPID-31037"
]
}
],
"title": "CVE-2024-7734"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…