Vulnerabilities > CVE-2019-18352 - Unspecified vulnerability in Phoenixcontact products

CVSS 8.2 - HIGH

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

LOW

low complexity

phoenixcontact

NVD

Published: 2020-02-18

Updated: 2020-08-24

Summary

Improper access control exists on PHOENIX CONTACT FL NAT 2208 devices before V2.90 and FL NAT 2304-2GC-2SFP devices before V2.90 when using MAC-based port security.

Vulnerable Configurations

Part	Description	Count
OS	Phoenixcontact Phoenixcontact FL NAT 2208 Firmware * Phoenixcontact FL NAT 2304 2GC 2Sfp Firmware *	2
Hardware	Phoenixcontact Phoenixcontact FL NAT 2208 - Phoenixcontact FL NAT 2304 2GC 2Sfp -	2

References

https://cert.vde.com/de-de/advisories/vde-2019-020