CVE-2022-3480 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Affected Products (NVD)

Vendor	Product	Version
phoenixcontact	fl_mguard_centerport_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_centerport_vpn-1000_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_core_tx_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_core_tx_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_delta_tx\/tx_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_delta_tx\/tx_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_gt\/gt_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_gt\/gt_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_pci4000_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_pci4000_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_pcie4000_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_pcie4000_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_rs2000_tx\/tx-b_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_rs2000_tx\/tx_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_rs2005_tx_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_rs4000_tx\/tx_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_rs4000_tx\/tx-m_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_rs4000_tx\/tx-p_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_rs4000_tx\/tx_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_rs4004_tx\/dtx_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_rs4004_tx\/dtx_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_smart2_firmware	𝑥 < 8.9.0
phoenixcontact	fl_mguard_smart2_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	tc_mguard_rs2000_3g_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	tc_mguard_rs2000_4g_att_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	tc_mguard_rs2000_4g_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	tc_mguard_rs2000_4g_vzw_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	tc_mguard_rs4000_3g_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	tc_mguard_rs4000_4g_att_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	tc_mguard_rs4000_4g_vpn_firmware	𝑥 < 8.9.0
phoenixcontact	tc_mguard_rs4000_4g_vzw_vpn_firmware	𝑥 < 8.9.0

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-770 - Allocation of Resources Without Limits or Throttling
The software allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

References

https://cert.vde.com/en/advisories/VDE-2022-051/