CVE-2018-5441 — HIGH (7.8) — White Hats Nepal

Q: How severe is CVE-2018-5441?

CVE-2018-5441 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-5441?

Check the references section above for vendor advisories and patch information. Affected products include: Phoenixcontact Mguard Centerport Firmware, Phoenixcontact Mguard Centerport, Phoenixcontact Mguard Delta Tx\/Tx Firmware, Phoenixcontact Mguard Delta Tx\/Tx, Phoenixcontact Mguard Delta Tx\/Tx Vpn Firmware.

Vulnerability Description

An Improper Validation of Integrity Check Value issue was discovered in PHOENIX CONTACT mGuard firmware versions 7.2 to 8.6.0. mGuard devices rely on internal checksums for verification of the internal integrity of the update packages. Verification may not always be performed correctly, allowing an attacker to modify firmware update packages.

CVSS Score

7.8

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Phoenixcontact	Mguard Centerport Firmware	>= 7.2.0, <= 8.6.0
Phoenixcontact	Mguard Centerport	-
Phoenixcontact	Mguard Delta Tx\/Tx Firmware	>= 7.2.0, <= 8.6.0
Phoenixcontact	Mguard Delta Tx\/Tx	-
Phoenixcontact	Mguard Delta Tx\/Tx Vpn Firmware	>= 7.2.0, <= 8.6.0
Phoenixcontact	Mguard Delta Tx\/Tx Vpn	-
Phoenixcontact	Mguard Gt\/Gt Firmware	>= 7.2.0, <= 8.6.0
Phoenixcontact	Mguard Gt\/Gt	-
Phoenixcontact	Mguard Gt\/Gt Vpn Firmware	>= 7.2.0, <= 8.6.0
Phoenixcontact	Mguard Gt\/Gt Vpn	-
Phoenixcontact	Mguard Pci4000 Vpn Firmware	>= 7.2.0, <= 8.6.0
Phoenixcontact	Mguard Pci4000 Vpn	-
Phoenixcontact	Mguard Pcie4000 Vpn Firmware	>= 7.2.0, <= 8.6.0
Phoenixcontact	Mguard Pcie4000 Vpn	-
Phoenixcontact	Mguard Rs2000 Tx\/Tx Vpn Firmware	>= 7.2.0, <= 8.6.0
Phoenixcontact	Mguard Rs2000 Tx\/Tx Vpn	-
Phoenixcontact	Mguard Rs2000 Tx\/Tx-B Firmware	>= 7.2.0, <= 8.6.0
Phoenixcontact	Mguard Rs2000 Tx\/Tx-B	-
Phoenixcontact	Mguard Rs2005 Tx Vpn Firmware	>= 7.2.0, <= 8.6.0
Phoenixcontact	Mguard Rs2005 Tx Vpn	-

Related Weaknesses (CWE)

CWE-20 CWE-354

References

http://www.securityfocus.com/bid/102907Third Party AdvisoryVDB Entry
https://cert.vde.com/en-us/advisories/vde-2018-001PatchThird Party Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-18-030-01Third Party AdvisoryUS Government Resource
http://www.securityfocus.com/bid/102907Third Party AdvisoryVDB Entry
https://cert.vde.com/en-us/advisories/vde-2018-001PatchThird Party Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-18-030-01Third Party AdvisoryUS Government Resource

FAQ

What is CVE-2018-5441?

CVE-2018-5441 is a vulnerability with a CVSS score of 7.8 (HIGH). An Improper Validation of Integrity Check Value issue was discovered in PHOENIX CONTACT mGuard firmware versions 7.2 to 8.6.0. mGuard devices rely on internal checksums for verification of the interna...

How severe is CVE-2018-5441?

CVE-2018-5441 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-5441?

Check the references section above for vendor advisories and patch information. Affected products include: Phoenixcontact Mguard Centerport Firmware, Phoenixcontact Mguard Centerport, Phoenixcontact Mguard Delta Tx\/Tx Firmware, Phoenixcontact Mguard Delta Tx\/Tx, Phoenixcontact Mguard Delta Tx\/Tx Vpn Firmware.