Phoenix Contact: Multiple mGuard devices are vulnerable to a drain of open file descriptors.

VDE-2024-052

Last update

14.05.2025 15:00

Published at

10.09.2024 12:00

Vendor(s)

Phoenix Contact GmbH & Co. KG

External ID

VDE-2024-052

CSAF Document

Download

Summary

The pathfinder TCP encapsulation service is vulnerable to a drain of open file descriptors.

Impact

Attackers can trigger a denial-of-service of the pathfinder TCP encapsulation service.

Affected Product(s)

Model no.	Product name	Affected versions
1357828	FL MGUARD 2102	Firmware <10.4.1
1357850	FL MGUARD 2105	Firmware <10.4.1
1441187	FL MGUARD 4102 PCI	Firmware <10.4.1
1357842	FL MGUARD 4102 PCIE	Firmware <10.4.1
1357840	FL MGUARD 4302	Firmware <10.4.1
1357875	FL MGUARD 4305	Firmware <10.4.1
2702547	FL MGUARD CENTERPORT	Firmware <8.9.3
2702820	FL MGUARD CENTERPORT VPN-1000	Firmware <8.9.3
2702884	FL MGUARD CORE TX	Firmware <8.9.3
2702831	FL MGUARD CORE TX VPN	Firmware <8.9.3
2700967	FL MGUARD DELTA TX/TX	Firmware <8.9.3
2700968	FL MGUARD DELTA TX/TX VPN	Firmware <8.9.3
2700197	FL MGUARD GT/GT	Firmware <8.9.3
2700198	FL MGUARD GT/GT VPN	Firmware <8.9.3
2701274	FL MGUARD PCI4000	Firmware <8.9.3
2701275	FL MGUARD PCI4000 VPN	Firmware <8.9.3
2701277	FL MGUARD PCIE4000	Firmware <8.9.3
2701278	FL MGUARD PCIE4000 VPN	Firmware <8.9.3
2700642	FL MGUARD RS2000 TX/TX VPN	Firmware <8.9.3
2702139	FL MGUARD RS2000 TX/TX-B	Firmware <8.9.3
2701875	FL MGUARD RS2005 TX VPN	Firmware <8.9.3
2700634	FL MGUARD RS4000 TX/TX	Firmware <8.9.3
2200515	FL MGUARD RS4000 TX/TX VPN	Firmware <8.9.3
2702470	FL MGUARD RS4000 TX/TX-M	Firmware <8.9.3
2702259	FL MGUARD RS4000 TX/TX-P	Firmware <8.9.3
2701876	FL MGUARD RS4004 TX/DTX	Firmware <8.9.3
2701877	FL MGUARD RS4004 TX/DTX VPN	Firmware <8.9.3
2700640	FL MGUARD SMART2	Firmware <8.9.3
2700639	FL MGUARD SMART2 VPN	Firmware <8.9.3
2903441	TC MGUARD RS2000 3G VPN	Firmware <8.9.3
1010464	TC MGUARD RS2000 4G ATT VPN	Firmware <8.9.3
2903588	TC MGUARD RS2000 4G VPN	Firmware <8.9.3
1010462	TC MGUARD RS2000 4G VZW VPN	Firmware <8.9.3
2903440	TC MGUARD RS4000 3G VPN	Firmware <8.9.3
1010463	TC MGUARD RS4000 4G ATT VPN	Firmware <8.9.3
2903586	TC MGUARD RS4000 4G VPN	Firmware <8.9.3
1010461	TC MGUARD RS4000 4G VZW VPN	Firmware <8.9.3

Vulnerabilities

Expand / Collapse all

Published

22.09.2025 14:58

Severity

5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Weakness

Allocation of Resources Without Limits or Throttling (CWE-770)

Summary

An unauthenticated remote attacker can exploit the behavior of the pathfinder TCP encapsulation service by establishing a high number of TCP connections to the pathfinder TCP encapsulation service. The impact is limited to blocking of valid IPsec VPN peers.

References

cve.org | nvd.nist.gov

Mitigation

Access to the listen port of the pathfinder TCP encapsulation service should be limited to trustworthy networks or peers.

Remediation

Phoenix Contact strongly recommends upgrading affected mGuard devices to firmware version 8.9.3 / 10.4.1 or higher which fix this vulnerability.

Revision History

Version	Date	Summary
1	10.09.2024 12:00	Initial revision.
2	06.11.2024 12:27	Fix: correct certvde domain, added self-reference
3	10.04.2025 15:00	Fixed current csaf reference URL
4	14.05.2025 15:00	Fix: added distribution

Phoenix Contact: Multiple mGuard devices are vulnerable to a drain of open file descriptors.

Summary

Impact

Affected Product(s)

Vulnerabilities

CVE-2024-7734 5.3

Mitigation

Remediation

Revision History