CVE-2024-7734 — MEDIUM (5.3)

Q: How severe is CVE-2024-7734?

CVE-2024-7734 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2024-7734?

Check the references section above for vendor advisories and patch information. Affected products include: Phoenixcontact Tc Mguard Rs4000 4G Vzw Vpn Firmware, Phoenixcontact Tc Mguard Rs4000 4G Vzw Vpn, Phoenixcontact Tc Mguard Rs4000 4G Vpn Firmware, Phoenixcontact Tc Mguard Rs4000 4G Vpn, Phoenixcontact Tc Mguard Rs4000 4G Att Vpn Firmware.

Vulnerability Description

An unauthenticated remote attacker can exploit the behavior of the pathfinder TCP encapsulation service by establishing a high number of TCP connections to the pathfinder TCP encapsulation service. The impact is limited to blocking of valid IPsec VPN peers.

CVSS Score

5.3

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

LOW

Affected Products

Vendor	Product	Versions
Phoenixcontact	Tc Mguard Rs4000 4G Vzw Vpn Firmware	< 8.9.3
Phoenixcontact	Tc Mguard Rs4000 4G Vzw Vpn	-
Phoenixcontact	Tc Mguard Rs4000 4G Vpn Firmware	< 8.9.3
Phoenixcontact	Tc Mguard Rs4000 4G Vpn	-
Phoenixcontact	Tc Mguard Rs4000 4G Att Vpn Firmware	< 8.9.3
Phoenixcontact	Tc Mguard Rs4000 4G Att Vpn	-
Phoenixcontact	Tc Mguard Rs4000 3G Vpn Firmware	< 8.9.3
Phoenixcontact	Tc Mguard Rs4000 3G Vpn	-
Phoenixcontact	Tc Mguard Rs2000 4G Vzw Vpn Firmware	< 8.9.3
Phoenixcontact	Tc Mguard Rs2000 4G Vzw Vpn	-
Phoenixcontact	Tc Mguard Rs2000 4G Vpn Firmware	< 8.9.3
Phoenixcontact	Tc Mguard Rs2000 4G Vpn	-
Phoenixcontact	Tc Mguard Rs2000 4G Att Vpn Firmware	< 8.9.3
Phoenixcontact	Tc Mguard Rs2000 4G Att Vpn	-
Phoenixcontact	Tc Mguard Rs2000 3G Vpn Firmware	< 8.9.3
Phoenixcontact	Tc Mguard Rs2000 3G Vpn	-
Phoenixcontact	Fl Mguard Smart2 Vpn Firmware	< 8.9.3
Phoenixcontact	Fl Mguard Smart2 Vpn	-
Phoenixcontact	Fl Mguard Smart2 Firmware	< 8.9.3
Phoenixcontact	Fl Mguard Smart2	-

Related Weaknesses (CWE)

CWE-770

References

https://cert.vde.com/en/advisories/VDE-2024-052MitigationThird Party Advisory

FAQ

What is CVE-2024-7734?

CVE-2024-7734 is a vulnerability with a CVSS score of 5.3 (MEDIUM). An unauthenticated remote attacker can exploit the behavior of the pathfinder TCP encapsulation service by establishing a high number of TCP connections to the pathfinder TCP encapsulation service. Th...

How severe is CVE-2024-7734?

CVE-2024-7734 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2024-7734?

Check the references section above for vendor advisories and patch information. Affected products include: Phoenixcontact Tc Mguard Rs4000 4G Vzw Vpn Firmware, Phoenixcontact Tc Mguard Rs4000 4G Vzw Vpn, Phoenixcontact Tc Mguard Rs4000 4G Vpn Firmware, Phoenixcontact Tc Mguard Rs4000 4G Vpn, Phoenixcontact Tc Mguard Rs4000 4G Att Vpn Firmware.