CVE-2022-3480

high-risk
Published 2022-11-15

A remote, unauthenticated attacker could cause a denial-of-service of PHOENIX CONTACT FL MGUARD and TC MGUARD devices below version 8.9.0 by sending a larger number of unauthenticated HTTPS connections originating from different source IP’s. Configuring firewall limits for incoming connections cannot prevent the issue.

Do I need to act?

-
0.75% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10 High
NETWORK / LOW complexity

Affected Products (20)

Fl Mguard Centerport Firmware
Fl Mguard Centerport Vpn-1000 Firmware
Fl Mguard Core Tx Firmware
Fl Mguard Core Tx Vpn Firmware
Fl Mguard Delta Tx\/Tx Firmware
Fl Mguard Delta Tx\/Tx Vpn Firmware
Fl Mguard Gt\/Gt Firmware
Fl Mguard Gt\/Gt Vpn Firmware
Fl Mguard Pci4000 Firmware
Fl Mguard Pci4000 Vpn Firmware
Fl Mguard Pcie4000 Firmware
Fl Mguard Pcie4000 Vpn Firmware
Fl Mguard Rs2000 Tx\/Tx-B Firmware
Fl Mguard Rs2000 Tx\/Tx Vpn Firmware
Fl Mguard Rs2005 Tx Vpn Firmware
Fl Mguard Rs4000 Tx\/Tx Firmware
Fl Mguard Rs4000 Tx\/Tx-M Firmware
Fl Mguard Rs4000 Tx\/Tx-P Firmware
Fl Mguard Rs4000 Tx\/Tx Vpn Firmware
Fl Mguard Rs4004 Tx\/Dtx Firmware

Affected Vendors

Phoenixcontact

References (2)

Mitigation https://cert.vde.com/en/advisories/VDE-2022-051/
Mitigation https://cert.vde.com/en/advisories/VDE-2022-051/
52
/ 100
high-risk
Severity 26/34 · High
Exploitability 3/34 · Minimal
Exposure 23/34 · High