CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-5159

An issue was discovered on Phoenix Contact mGuard devices that have been updated to Version 8.4.0. When updating an mGuard device to Version 8.4.0 via the update-upload facility, the update will succeed, but it will reset the password of the admin user to its default value.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 72.1%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/95648
https://ics-cert.us-cert.gov/advisories/ICSA-17-017-01
http://www.securityfocus.com/bid/95648
https://ics-cert.us-cert.gov/advisories/ICSA-17-017-01

Products affected by CVE-2017-5159

Phoenixcontact » Mguard Firmware » Version: 8.4.0

cpe:2.3:o:phoenixcontact:mguard_firmware:8.4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-5159

Products

Pricing

Contact Us