Tc Mguard Rs2000 4g VPN Firmware
CVEs (14)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-43384 | Hig | 0.52 | 8.0 | 0.00 | May 7, 2026 | A low privileged remote attacker can gain the root password due to improper removal of sensitive information before storage or transfer. | ||
| CVE-2024-43393 | 0.00 | — | 0.01 | Sep 10, 2024 | A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP FW_RULESETS.FROM_IP… | |||
| CVE-2024-43392 | 0.00 | — | 0.01 | Sep 10, 2024 | A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP environment variable… | |||
| CVE-2024-43391 | 0.00 | — | 0.01 | Sep 10, 2024 | A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_PORTFORWARDING.SRC_IP environment variable which can lead to a DoS. | |||
| CVE-2024-43390 | 0.00 | — | 0.01 | Sep 10, 2024 | A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS. | |||
| CVE-2024-43389 | 0.00 | — | 0.01 | Sep 10, 2024 | A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS. | |||
| CVE-2024-43388 | 0.00 | — | 0.01 | Sep 10, 2024 | A low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation. | |||
| CVE-2024-43387 | 0.00 | — | 0.01 | Sep 10, 2024 | A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices. | |||
| CVE-2024-43386 | 0.00 | — | 0.01 | Sep 10, 2024 | A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in mGuard devices. | |||
| CVE-2024-43385 | 0.00 | — | 0.01 | Sep 10, 2024 | A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices. | |||
| CVE-2024-7699 | 0.00 | — | 0.01 | Sep 10, 2024 | An low privileged remote attacker can execute OS commands with root privileges due to improper neutralization of special elements in user data. | |||
| CVE-2024-7698 | 0.00 | — | 0.00 | Sep 10, 2024 | A low privileged remote attacker can get access to CSRF tokens of higher privileged users which can be abused to mount CSRF attacks. | |||
| CVE-2024-7734 | 0.00 | — | 0.00 | Sep 10, 2024 | An unauthenticated remote attacker can exploit the behavior of the pathfinder TCP encapsulation service by establishing a high number of TCP connections to the pathfinder TCP encapsulation service. The impact is limited to blocking of valid IPsec VPN peers. | |||
| CVE-2022-3480 | 0.00 | — | 0.01 | Nov 15, 2022 | A remote, unauthenticated attacker could cause a denial-of-service of PHOENIX CONTACT FL MGUARD and TC MGUARD devices below version 8.9.0 by sending a larger number of unauthenticated HTTPS connections originating from different source IP’s. Configuring firewall limits for… |
- risk 0.52cvss 8.0epss 0.00
A low privileged remote attacker can gain the root password due to improper removal of sensitive information before storage or transfer.
- CVE-2024-43393Sep 10, 2024risk 0.00cvss —epss 0.01
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP FW_RULESETS.FROM_IP…
- CVE-2024-43392Sep 10, 2024risk 0.00cvss —epss 0.01
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW_OUTGOING.IN_IP environment variable…
- CVE-2024-43391Sep 10, 2024risk 0.00cvss —epss 0.01
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_PORTFORWARDING.SRC_IP environment variable which can lead to a DoS.
- CVE-2024-43390Sep 10, 2024risk 0.00cvss —epss 0.01
A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS.
- CVE-2024-43389Sep 10, 2024risk 0.00cvss —epss 0.01
A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS.
- CVE-2024-43388Sep 10, 2024risk 0.00cvss —epss 0.01
A low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation.
- CVE-2024-43387Sep 10, 2024risk 0.00cvss —epss 0.01
A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices.
- CVE-2024-43386Sep 10, 2024risk 0.00cvss —epss 0.01
A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in mGuard devices.
- CVE-2024-43385Sep 10, 2024risk 0.00cvss —epss 0.01
A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices.
- CVE-2024-7699Sep 10, 2024risk 0.00cvss —epss 0.01
An low privileged remote attacker can execute OS commands with root privileges due to improper neutralization of special elements in user data.
- CVE-2024-7698Sep 10, 2024risk 0.00cvss —epss 0.00
A low privileged remote attacker can get access to CSRF tokens of higher privileged users which can be abused to mount CSRF attacks.
- CVE-2024-7734Sep 10, 2024risk 0.00cvss —epss 0.00
An unauthenticated remote attacker can exploit the behavior of the pathfinder TCP encapsulation service by establishing a high number of TCP connections to the pathfinder TCP encapsulation service. The impact is limited to blocking of valid IPsec VPN peers.
- CVE-2022-3480Nov 15, 2022risk 0.00cvss —epss 0.01
A remote, unauthenticated attacker could cause a denial-of-service of PHOENIX CONTACT FL MGUARD and TC MGUARD devices below version 8.9.0 by sending a larger number of unauthenticated HTTPS connections originating from different source IP’s. Configuring firewall limits for…