CVE-2017-5159

Summary

An issue was discovered on Phoenix Contact mGuard devices that have been updated to Version 8.4.0. When updating an mGuard device to Version 8.4.0 via the update-upload facility, the update will succeed, but it will reset the password of the admin user to its default value.

Affected Software

VendorProductVersion RangeStatus
n/aPhoenix Contact mGuard 8.4.0Phoenix Contact mGuard 8.4.0affected

Weaknesses

  • Phoenix Contact mGuard default admin password

ADP Enrichment

CVE Program Container

Additional References

References