Low Privilege Attacker Can Conduct Configuration Changes Leading to Denial of Service
CVE-2024-43391

8.1HIGH

Key Information:

Vendor: Phoenix Contact
Status: Fl Mguard 2102; Fl Mguard 2105; Fl Mguard 4102 Pci; Fl Mguard 4102 Pcie
Vendor: CVE Published:; 10 September 2024

Summary

A vulnerability exists in the firewall services of Vendor X products that enables low privileged remote attackers to alter critical configurations. This can include changes to packet filtering, forwarding, network access controls, and network address translation (NAT). By manipulating the FW_PORTFORWARDING.SRC_IP environment variable, attackers can disrupt service operations, leading to a denial of service (DoS) condition. This presents significant risks for network integrity and availability.

Affected Version(s)

FL MGUARD 2102 0 < 10.4.1

FL MGUARD 2105 0 < 10.4.1

FL MGUARD 4102 PCI 0 < 10.4.1

References

https://cert.vde.com/en/advisories/VDE-2024-039

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 10, 2024
Vulnerability Reserved
Aug 12, 2024

Collectors

NVD DatabaseMitre Database

Credit

Andrea Palanca

Nozomi Networks Security Research Team