CVE-2018-5441
moderate-risk
Published 2018-01-30
An Improper Validation of Integrity Check Value issue was discovered in PHOENIX CONTACT mGuard firmware versions 7.2 to 8.6.0. mGuard devices rely on internal checksums for verification of the internal integrity of the update packages. Verification may not always be performed correctly, allowing an attacker to modify firmware update packages.
Do I need to act?
-
0.04% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.8/10
High
LOCAL
/ LOW complexity
Affected Products (20)
Mguard Centerport Firmware
Mguard Delta Tx\/Tx Firmware
Mguard Delta Tx\/Tx Vpn Firmware
Mguard Gt\/Gt Firmware
Mguard Gt\/Gt Vpn Firmware
Mguard Pci4000 Vpn Firmware
Mguard Pcie4000 Vpn Firmware
Mguard Rs2000 Tx\/Tx Vpn Firmware
Mguard Rs2000 Tx\/Tx-B Firmware
Mguard Rs2005 Tx Vpn Firmware
Mguard Rs4000 Tx\/Tx Firmware
Mguard Rs4000 Tx\/Tx Vpn Firmware
Mguard Rs4000 Tx\/Tx Vpn-M Firmware
Mguard Rs4000 Tx\/Tx-P Firmware
Mguard Rs4004 Tx\/Dtx Firmware
Mguard Rs4004 Tx\/Dtx Vpn Firmware
Mguard Smart2 Firmware
Mguard Smart2 Vpn Firmware
Mguard Rs2000 3G Vpn Firmware
Mguard Rs4000 3G Vpn Firmware
Affected Vendors
References (6)
Third Party Advisory
http://www.securityfocus.com/bid/102907
Third Party Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-18-030-01
Third Party Advisory
http://www.securityfocus.com/bid/102907
Third Party Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-18-030-01
45
/ 100
moderate-risk
Severity
24/34 · High
Exploitability
0/34 · Minimal
Exposure
21/34 · High