Innominate mGuard OpenSSL HeartBleed Vulnerability

CVEs (1)

Remediations

• All users of the affected mGuard firmware Versions 8.0.0 and 8.0.1 should upgrade to mGuard firmware Version 8.0.2. Innominate recommends users update SSL keys on the affected products after upgrade. The mGuard firmware Version 8.0.2 provides a combined function to replace both the HTTPS and SSH keys.
• For more information regarding this vulnerability and specific instructions on how to install the latest firmware version, please see the Innominate Security Advisory published April 11, 2014, at the following location: (http://www.innominate.com/data/downloads/software/innominate_security_advisory_20140411_001_en.pdf)
• Phoenix Contact branded devices are not vulnerable to this issue, as they are using mGuard firmware Version 7.5 that is not affected by HeartBleed. Only mGuard firmware Versions 8.0.0 and 8.0.1 are affected. Phoenix Contact has posted the 8.0.2 firmware patch release on its web site: (https://www.phoenixcontact.com/mguardsecurity)

Affected Vendors

Affected Products (1)