PHOENIX CONTACT: Advisory for mGuard products

VDE-2018-001

Last update

05/14/2025 14:28

Published at

01/30/2018 10:00

Vendor(s)

Phoenix Contact GmbH & Co. KG

External ID

VDE-2018-001

CSAF Document

Download

Summary

The integrity of the mGuard firmware atomic update process cannot be guaranteed under all circumstances.

The mGuard atomic update mechanism relies on internal checksums for the integrity verification of some portions of the update packages. The verification of these internal checksums may not always be performed correctly.

Impact

The mGuard only allows the installation of firmware updates digitally signed by Phoenix Contact (Innominate). The atomic update mechanism that was introduced with mGuard 7.2.0 to support the current generation of devices relies on internal checksums for the verification of the internal integrity of some portions of the update packages. As the verification may not always be performed correctly, an attacker might modify firmware update packages.

This vulnerability is present in all mGuard releases since 7.2.0 on the listed devices but does not affect the current mGuard 8.6.1 release.

Firmware images used to completely flash the device are not affected by this vulnerability.

Affected Product(s)

Model no.	Product name	Affected versions
	FL MGUARD CENTERPORT	Software 7.2<=8.6.0
	FL MGUARD CORE TX VPN	Software 7.2<=8.6.0
	FL MGUARD DELTA TX/TX	Software 7.2<=8.6.0
	FL MGUARD DELTA TX/TX VPN	Software 7.2<=8.6.0
	FL MGUARD GT/GT	Software 7.2<=8.6.0
	FL MGUARD GT/GT VPN	Software 7.2<=8.6.0
	FL MGUARD PCI4000 VPN	Software 7.2<=8.6.0
	FL MGUARD PCIE4000 VPN	Software 7.2<=8.6.0
	FL MGUARD RS2000 3G VPN	Software 7.2<=8.6.0
	FL MGUARD RS2000 4G VPN	Software 7.2<=8.6.0
	FL MGUARD RS2000 TX/TX VPN	Software 7.2<=8.6.0
	FL MGUARD RS2000 TX/TX-B	Software 7.2<=8.6.0
	FL MGUARD RS2005 TX VPN	Software 7.2<=8.6.0
	FL MGUARD RS4000 3G VPN	Software 7.2<=8.6.0
	FL MGUARD RS4000 4G VPN	Software 7.2<=8.6.0
	FL MGUARD RS4000 TX/TX	Software 7.2<=8.6.0
	FL MGUARD RS4000 TX/TX VPN	Software 7.2<=8.6.0
	FL MGUARD RS4000 TX/TX VPN-M	Software 7.2<=8.6.0
	FL MGUARD RS4000 TX/TX-P	Software 7.2<=8.6.0
	FL MGUARD RS4004 TX/DTX	Software 7.2<=8.6.0
	FL MGUARD RS4004 TX/DTX VPN	Software 7.2<=8.6.0
	FL MGUARD SMART2	Software 7.2<=8.6.0
	FL MGUARD SMART2 VPN	Software 7.2<=8.6.0

Vulnerabilities

Expand / Collapse all

Published

09/22/2025 14:57

Severity

7.8 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Weakness

Improper Input Validation (CWE-20)

Summary

An Improper Validation of Integrity Check Value issue was discovered in PHOENIX CONTACT mGuard firmware versions 7.2 to 8.6.0. mGuard devices rely on internal checksums for verification of the internal integrity of the update packages. Verification may not always be performed correctly, allowing an attacker to modify firmware update packages.

References

cve.org | nvd.nist.gov

Remediation

We strongly advise all mGuard users to upgrade to the firmware version 8.6.1.

Also affected are discontinued mGuard products from PHOENIX CONTACT and Innominate AG running firmware version 7.2.0 or above.

Article N°	Model	Download Link
2702547	FL MGUARD CENTERPORT	www.phoenixcontact.com/de-de/produkte...
2700967	FL MGUARD DELTA TX/TX	www.phoenixcontact.com/de-de/produkte...
2700968	FL MGUARD DELTA TX/TX VPN	www.phoenixcontact.com/de-de/produkte...
2700197	FL MGUARD GT/GT	www.phoenixcontact.com/de-de/produkte...
2700198	FL MGUARD GT/GT VPN	www.phoenixcontact.com/de-de/produkte...
2701275	FL MGUARD PCI4000 VPN	www.phoenixcontact.com/de-de/produkte...
2701278	FL MGUARD PCIE4000 VPN	www.phoenixcontact.com/de-de/produkte...
2700642	FL MGUARD RS2000 TX/TX VPN	www.phoenixcontact.com/de-de/produkte...
2702139	FL MGUARD RS2000 TX/TX-B	www.phoenixcontact.com/de-de/produkte...
2701875	FL MGUARD RS2005 TX VPN	www.phoenixcontact.com/de-de/produkte...
2700634	FL MGUARD RS4000 TX/TX	www.phoenixcontact.com/de-de/produkte...
2200515	FL MGUARD RS4000 TX/TX VPN	www.phoenixcontact.com/de-de/produkte...
2702465	FL MGUARD RS4000 TX/TX VPN-M	www.phoenixcontact.com/de-de/produkte...
2702259	FL MGUARD RS4000 TX/TX-P	www.phoenixcontact.com/de-de/produkte...
2701876	FL MGUARD RS4004 TX/DTX	www.phoenixcontact.com/de-de/produkte...
2701877	FL MGUARD RS4004 TX/DTX VPN	www.phoenixcontact.com/de-de/produkte...
2700640	FL MGUARD SMART2	www.phoenixcontact.com/de-de/produkte...
2700639	FL MGUARD SMART2 VPN	www.phoenixcontact.com/de-de/produkte...
2903441	TC MGUARD RS2000 3G VPN	www.phoenixcontact.com/de-de/produkte...
2903440	TC MGUARD RS4000 3G VPN	www.phoenixcontact.com/de-de/produkte...
2702831	FL MGUARD CORE TX VPN	www.phoenixcontact.com/de-de/produkte...
2903588	TC MGUARD RS2000 4G VPN	www.phoenixcontact.com/de-de/produkte...
2903586	TC MGUARD RS4000 4G VPN	www.phoenixcontact.com/de-de/produkte...

Revision History

Version	Date	Summary
1	01/30/2018 10:00	Initial revision.
2	01/15/2025 12:00	update publisher details
3	05/14/2025 14:28	Fix: version space, firmware category, added distribution

PHOENIX CONTACT: Advisory for mGuard products

Summary

Impact

Affected Product(s)

Vulnerabilities

CVE-2018-5441 7.8

Remediation

Revision History