7.8
CVE-2017-7935
- EPSS 0.23%
- Veröffentlicht 19.05.2017 03:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
- Quelle ics-cert@hq.dhs.gov
- CVE-Watchlists
- Unerledigt
LoginA Resource Exhaustion issue was discovered in Phoenix Contact GmbH mGuard firmware versions 8.3.0 to 8.4.2. An attacker may compromise the device's availability by performing multiple initial VPN requests.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Phoenix Contact Gmbh ≫ Mguard Firmware Version8.3.0
Phoenix Contact Gmbh ≫ Mguard Firmware Version8.3.1
Phoenix Contact Gmbh ≫ Mguard Firmware Version8.3.2
Phoenix Contact Gmbh ≫ Mguard Firmware Version8.4.0
Phoenix Contact Gmbh ≫ Mguard Firmware Version8.4.1
Phoenix Contact Gmbh ≫ Mguard Firmware Version8.4.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.23% | 0.427 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 7.8 | 10 | 6.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:C
|
CWE-400 Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.