FL MGUARD 2102 — Vulnerabilities & Security Advisories 13

All 13 CVE vulnerabilities found in FL MGUARD 2102, with AI-generated Chinese analysis, references, and POCs.

Vendor: PHOENIX CONTACT

CVE ID	Title	CVSS	Severity	Paused
CVE-2024-43393	Phoenix Contact: Configuration changes of the firewall services can lead to DoS in MGUARD devices CWE-94	8.1	High	2024-09-10
CVE-2024-43392	Phoenix Contact: Firewall reconfiguration through the FW_environment variables in MGUARD devices CWE-94	8.1	High	2024-09-10
CVE-2024-43391	Phoenix Contact: Firewall reconfiguration through the FW_PORTFORWARDING.SRC_IP in MGUARD devices CWE-94	8.1	High	2024-09-10
CVE-2024-43390	Phoenix Contact: Firewall reconfiguration due to improper input validation in MGUARD devices CWE-94	8.1	High	2024-09-10
CVE-2024-43389	Phoenix Contact: OSPF reconfiguration due to improper input validation in MGUARD devices CWE-94	8.1	High	2024-09-10
CVE-2024-43388	Phoenix Contact: SNMP reconfiguration due to improper input validation in MGUARD devices CWE-94	8.8	High	2024-09-10
CVE-2024-43387	Phoenix Contact: Access files due to improper neutralization of special elements in MGUARD devices CWE-78	8.8	High	2024-09-10
CVE-2024-43386	Phoenix Contact: OS command execution through EMAIL_NOTIFICATION.TO in mGuard devices. CWE-78	8.8	High	2024-09-10
CVE-2024-43385	Phoenix Contact: OS command execution through PROXY_HTTP_PORT in mGuard devices CWE-78	8.8	High	2024-09-10
CVE-2024-7699	Phoenix Contact: OS command execution in MGUARD products CWE-78	8.8	High	2024-09-10
CVE-2024-7698	Phoenix Contact: Access to CSRF tokens of higher privileged users in MGUARD products CWE-201	5.7	Medium	2024-09-10
CVE-2024-7734	Phoenix Contact: Multiple mGuard devices are vulnerable to a drain of open file descriptors. CWE-770	5.3	Medium	2024-09-10
CVE-2023-2673	PHOENIX CONTACT: FL/TC MGUARD prone to Improper Input Validation CWE-1287	5.3	Medium	2023-06-13

All 13 known CVE vulnerabilities affecting FL MGUARD 2102 with full Chinese analysis, references, and POCs where available.