← Back to home
ICSA-17-017-01  ·  Published 2017-01-17  ·  View on CISA ICS-CERT ↗

PHOENIX CONTACT mGuard

CVSS 9.8 CRITICAL

Risk Summary

ATTENTION: Remotely exploitable/low skill level to exploit

CVEs (1)

Remediations

  • PHOENIX CONTACT recommends users update to Version 8.4.1 (or higher, if applicable). If an update to Version 8.4.0 already has been performed, please change the “admin” password via WebUI or command line. If SSH or HTTPS access was possible from untrusted sources after an update to Version 8.4.0, please flash the device and exchange all private keys and passphrases in the configuration.
  • To view the advisory published by PHOENIX CONTACT, navigate to the product page on www.phoenixcontact.com and then find the document in the “various” section of the product download page.

Affected Vendors

PHOENIX CONTACT, Innominate Security Technologies

Affected Products (1)

PHOENIX CONTACT, Innominate Security Technologies · mGuard 8.4.0

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more