Innominate: >> Mguard Firmware >> 8.0.2 Security Vulnerabilities
The IPsec SA establishment process on Innominate mGuard devices with firmware 8.x before 8.1.7 allows remote authenticated users to cause a denial of service (VPN service restart) by leveraging a peer relationship to send a crafted configuration with compression.
CVSS Score
4.0
EPSS Score
0.003
Published
2015-08-30
Innominate mGuard with firmware before 7.6.6 and 8.x before 8.1.4 allows remote authenticated admins to obtain root privileges by changing a PPP configuration setting.
CVSS Score
9.0
EPSS Score
0.002
Published
2014-12-20
Innominate mGuard before 7.6.4 and 8.x before 8.0.3 does not require authentication for snapshot downloads, which allows remote attackers to obtain sensitive information via a crafted HTTPS request.
CVSS Score
5.0
EPSS Score
0.02
Published
2014-07-30