Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2021-34579
HistoryNov 09, 2022 - 5:15 p.m.

Code injection

2022-11-0917:15:00
PRIOn knowledge base
www.prio-n.com
5
phoenix contact
fl mguard dm
apache
unauthorized access
sensitive information
nvd

7.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

51.4%

JSON

In Phoenix Contact: FL MGUARD DM version 1.12.0 and 1.13.0 access to the Apache web server being installed as part of the FL MGUARD DM on Microsoft Windows does not require login credentials even if configured during installation.Attackers with network access to the Apache web server can download and therefore read mGuard configuration profiles (β€œATV profiles”). Such configuration profiles may contain sensitive information, e.g. private keys associated with IPsec VPN connections.

CPENameOperatorVersion
fl_mguard_dmeq1.12.0
fl_mguard_dmeq1.13.0

Related

cve 1
nvd 1
cvelist 1
cve
cve
CVE-2021-34579
2022-11-09 17:15:10
nvd
nvd
CVE-2021-34579
2022-11-09 17:15:10
cvelist
cvelist
CVE-2021-34579 PHOENIX CONTACT: FL MGUARD DM version 1.12.0 and 1.13.0 Improper Privilege Management
2022-11-09 16:28:32

7.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

51.4%

JSON
Related for PRION:CVE-2021-34579
cve1nvd1cvelist1