7.5
CVE-2022-3480
- EPSS 0.85%
- Veröffentlicht 15.11.2022 11:15:12
- Zuletzt bearbeitet 21.11.2024 07:19:37
- Quelle info@cert.vde.com
- CVE-Watchlists
- Unerledigt
Denial-of-Service vulnerability in PHOENIX CONTACT mGuard product family
A remote, unauthenticated attacker could cause a denial-of-service of PHOENIX CONTACT FL MGUARD and TC MGUARD devices below version 8.9.0 by sending a larger number of unauthenticated HTTPS connections originating from different source IP’s. Configuring firewall limits for incoming connections cannot prevent the issue.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Phoenixcontact ≫ Fl Mguard Centerport Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Centerport Vpn-1000 Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Core Tx Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Core Tx Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Delta Tx/tx Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Delta Tx/tx Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Gt/gt Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Gt/gt Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Pci4000 Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Pci4000 Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Pcie4000 Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Pcie4000 Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Rs2000 Tx/tx-b Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Rs2000 Tx/tx Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Rs2005 Tx Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Rs4000 Tx/tx Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Rs4000 Tx/tx-m Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Rs4000 Tx/tx-p Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Rs4000 Tx/tx Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Rs4004 Tx/dtx Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Rs4004 Tx/dtx Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Smart2 Firmware Version < 8.9.0
Phoenixcontact ≫ Fl Mguard Smart2 Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Tc Mguard Rs2000 3g Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Tc Mguard Rs2000 4g Att Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Tc Mguard Rs2000 4g Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Tc Mguard Rs2000 4g Vzw Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Tc Mguard Rs4000 3g Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Tc Mguard Rs4000 4g Att Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Tc Mguard Rs4000 4g Vpn Firmware Version < 8.9.0
Phoenixcontact ≫ Tc Mguard Rs4000 4g Vzw Vpn Firmware Version < 8.9.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.85% | 0.534 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| info@cert.vde.com | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-770 Allocation of Resources Without Limits or Throttling
The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.
https://cert.vde.com/en/advisories/VDE-2022-051/