Phoenixcontact: >> Fl Mguard 1105 Security Vulnerabilities
In Phoenix Contact FL MGUARD 1102 and 1105 in Versions 1.4.0, 1.4.1 and 1.5.0 the remote logging functionality is impaired by the lack of memory release for data structures from syslog-ng when remote logging is active
CVSS Score
7.5
EPSS Score
0.003
Published
2021-11-10
In Phoenix Contact FL MGUARD 1102 and 1105 in Versions 1.4.0, 1.4.1 and 1.5.0 a user with high privileges can inject HTML code (XSS) through web-based management or the REST API with a manipulated certificate file.
CVSS Score
4.8
EPSS Score
0.001
Published
2021-11-10