Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2022-3480
HistoryNov 15, 2022 - 11:15 a.m.

CVE-2022-3480

2022-11-1511:15:12
CWE-770
[email protected]
web.nvd.nist.gov
remote attacker
unauthenticated
denial-of-service
phoenix contact
fl mguard
tc mguard
version 8.9.0
https
connections
firewall limits

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

56.3%

JSON

A remote, unauthenticated attacker could cause a denial-of-service of PHOENIX CONTACT FL MGUARD and TC MGUARD devices below version 8.9.0 by sending a larger number of unauthenticated HTTPS connections originating from different source IP’s. Configuring firewall limits for incoming connections cannot prevent the issue.

Affected configurations

NVD
Node
phoenixcontactfl_mguard_centerport_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_centerportMatch-
Node
phoenixcontactfl_mguard_centerport_vpn-1000_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_centerport_vpn-1000Match-
Node
phoenixcontactfl_mguard_core_tx_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_core_txMatch-
Node
phoenixcontactfl_mguard_core_tx_vpn_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_core_tx_vpnMatch-
Node
phoenixcontactfl_mguard_delta_tx\/tx_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_delta_tx\/txMatch-
Node
phoenixcontactfl_mguard_delta_tx\/tx_vpn_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_delta_tx\/tx_vpnMatch-
Node
phoenixcontactfl_mguard_gt\/gt_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_gt\/gtMatch-
Node
phoenixcontactfl_mguard_gt\/gt_vpn_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_gt\/gt_vpnMatch-
Node
phoenixcontactfl_mguard_pci4000_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_pci4000Match-
Node
phoenixcontactfl_mguard_pci4000_vpn_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_pci4000_vpnMatch-
Node
phoenixcontactfl_mguard_pcie4000_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_pcie4000Match-
Node
phoenixcontactfl_mguard_pcie4000_vpn_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_pcie4000_vpnMatch-
Node
phoenixcontactfl_mguard_rs2000_tx\/tx-b_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_rs2000_tx\/tx-bMatch-
Node
phoenixcontactfl_mguard_rs2000_tx\/tx_vpn_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_rs2000_tx\/tx_vpnMatch-
Node
phoenixcontactfl_mguard_rs2005_tx_vpn_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_rs2005_tx_vpnMatch-
Node
phoenixcontactfl_mguard_rs4000_tx\/tx_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_rs4000_tx\/txMatch-
Node
phoenixcontactfl_mguard_rs4000_tx\/tx-m_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_rs4000_tx\/tx-mMatch-
Node
phoenixcontactfl_mguard_rs4000_tx\/tx-p_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_rs4000_tx\/tx-pMatch-
Node
phoenixcontactfl_mguard_rs4000_tx\/tx_vpn_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_rs4000_tx\/tx_vpnMatch-
Node
phoenixcontactfl_mguard_rs4004_tx\/dtx_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_rs4004_tx\/dtxMatch-
Node
phoenixcontactfl_mguard_rs4004_tx\/dtx_vpn_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_rs4004_tx\/dtx_vpnMatch-
Node
phoenixcontactfl_mguard_smart2_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_smart2Match-
Node
phoenixcontactfl_mguard_smart2_vpn_firmwareRange<8.9.0
AND
phoenixcontactfl_mguard_smart2_vpnMatch-
Node
phoenixcontacttc_mguard_rs2000_3g_vpn_firmwareRange<8.9.0
AND
phoenixcontacttc_mguard_rs2000_3g_vpnMatch-
Node
phoenixcontacttc_mguard_rs2000_4g_att_vpn_firmwareRange<8.9.0
AND
phoenixcontacttc_mguard_rs2000_4g_att_vpnMatch-
Node
phoenixcontacttc_mguard_rs2000_4g_vpn_firmwareRange<8.9.0
AND
phoenixcontacttc_mguard_rs2000_4g_vpnMatch-
Node
phoenixcontacttc_mguard_rs2000_4g_vzw_vpn_firmwareRange<8.9.0
AND
phoenixcontacttc_mguard_rs2000_4g_vzw_vpnMatch-
Node
phoenixcontacttc_mguard_rs4000_3g_vpn_firmwareRange<8.9.0
AND
phoenixcontacttc_mguard_rs4000_3g_vpnMatch-
Node
phoenixcontacttc_mguard_rs4000_4g_att_vpn_firmwareRange<8.9.0
AND
phoenixcontacttc_mguard_rs4000_4g_att_vpnMatch-
Node
phoenixcontacttc_mguard_rs4000_4g_vpn_firmwareRange<8.9.0
AND
phoenixcontacttc_mguard_rs4000_4g_vpnMatch-
Node
phoenixcontacttc_mguard_rs4000_4g_vzw_vpn_firmwareRange<8.9.0
AND
phoenixcontacttc_mguard_rs4000_4g_vzw_vpnMatch-

Related

prion 1
cvelist 1
cve 1
prion
prion
Design/Logic Flaw
2022-11-15 11:15:00
cvelist
cvelist
CVE-2022-3480 Denial-of-Service vulnerability in PHOENIX CONTACT mGuard product family
2022-11-15 10:58:25
cve
cve
CVE-2022-3480
2022-11-15 11:15:12

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

56.3%

JSON
Related for NVD:CVE-2022-3480
prion1cvelist1cve1