CVE-2021-34598

Summary

In Phoenix Contact FL MGUARD 1102 and 1105 in Versions 1.4.0, 1.4.1 and 1.5.0 the remote logging functionality is impaired by the lack of memory release for data structures from syslog-ng when remote logging is active

Affected Software

VendorProductVersion RangeStatus
PHOENIX CONTACTFL MGUARD1.4.0 < FL MGUARD 1102 (No. 1153079)*affected
PHOENIX CONTACTFL MGUARD1.4.0 < FL MGUARD 1105 (No. 1153078)*affected

Weaknesses

  • CWE-401: CWE-401 Improper Release of Memory Before Removing Last Reference

Workarounds

To prevent the possibility of an attack, it is recommended to deactivate remote logging.

ADP Enrichment

CVE Program Container

Additional References

References