5.3
CVE-2023-2673
- EPSS 0.02%
- Published 13.06.2023 07:15:46
- Last modified 21.11.2024 07:59:03
- Source info@cert.vde.com
- Teams watchlist Login
- Open Login
Improper Input Validation vulnerability in PHOENIX CONTACT FL/TC MGUARD Family in multiple versions may allow UDP packets to bypass the filter rules and access the solely connected device behind the MGUARD which can be used for flooding attacks.
Data is provided by the National Vulnerability Database (NVD)
Phoenixcontact ≫ Fl Mguard 2102 Firmware Version <= 10.1.1
Phoenixcontact ≫ Fl Mguard 4102 Pci Firmware Version <= 10.1.1
Phoenixcontact ≫ Fl Mguard 4102 Pcie Firmware Version <= 10.1.1
Phoenixcontact ≫ Fl Mguard 4302 Firmware Version <= 10.1.1
Phoenixcontact ≫ Fl Mguard Centerport Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Centerport Vpn-1000 Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Core Tx Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Core Tx Vpn Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Delta Tx/tx Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Delta Tx/tx Vpn Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Gt/gt Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Gt/gt Vpn Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Pci4000 Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Pci4000 Vpn Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Pcie4000 Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Pcie4000 Vpn Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Rs2000 Tx/tx-b Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Rs2000 Tx/tx Vpn Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Rs2005 Tx Vpn Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Rs4000 Tx/tx-m Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Rs4000 Tx/tx-p Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Rs4000 Tx/tx Vpn Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Rs4004 Tx/dtx Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Rs4004 Tx/dtx Vpn Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Smart2 Firmware Version <= 8.9.0
Phoenixcontact ≫ Fl Mguard Smart2 Vpn Firmware Version <= 8.9.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.041 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| info@cert.vde.com | 5.3 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
|
| nvd@nist.gov | 5.3 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
|
CWE-1287 Improper Validation of Specified Type of Input
The product receives input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expected type.