Phoenixcontact

Fl Mguard Centerport Vpn-1000 Firmware

14 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2024-7699

  • EPSS 0.63%
  • Published 10.09.2024 09:15:07
  • Last modified 27.09.2024 18:59:31

An low privileged remote attacker can execute OS commands with root privileges due to improper neutralization of special elements in user data.

8.1

CVE-2024-43392

  • EPSS 0.34%
  • Published 10.09.2024 09:15:06
  • Last modified 22.08.2025 07:15:44

A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.I...

8.1

CVE-2024-43393

  • EPSS 0.34%
  • Published 10.09.2024 09:15:06
  • Last modified 22.08.2025 07:15:44

A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.I...

5.7

CVE-2024-7698

  • EPSS 0.1%
  • Published 10.09.2024 09:15:06
  • Last modified 22.08.2025 07:15:45

A low privileged remote attacker can get access to CSRF tokens of higher privileged users which can be abused to mount CSRF attacks.

8.1

CVE-2024-43389

  • EPSS 0.34%
  • Published 10.09.2024 09:15:05
  • Last modified 22.08.2025 07:15:43

A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS.

8.1

CVE-2024-43390

  • EPSS 0.34%
  • Published 10.09.2024 09:15:05
  • Last modified 22.08.2025 07:15:43

A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS.

8.1

CVE-2024-43391

  • EPSS 0.34%
  • Published 10.09.2024 09:15:05
  • Last modified 22.08.2025 07:15:43

A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_PORTFORWARDING.SRC_IP environment variable which can lead to a DoS.

8.8

CVE-2024-43385

  • EPSS 1.15%
  • Published 10.09.2024 09:15:04
  • Last modified 27.09.2024 19:33:08

A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices.

8.8

CVE-2024-43386

  • EPSS 1.15%
  • Published 10.09.2024 09:15:04
  • Last modified 27.09.2024 19:33:22

A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in mGuard devices.

8.8

CVE-2024-43387

  • EPSS 0.41%
  • Published 10.09.2024 09:15:04
  • Last modified 27.09.2024 19:33:37

A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices.