CVE-2021-34598
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
In Phoenix Contact FL MGUARD 1102 and 1105 in Versions 1.4.0, 1.4.1 and 1.5.0 the remote logging functionality is impaired by the lack of memory release for data structures from syslog-ng when remote logging is active
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| PHOENIX CONTACT | FL MGUARD | 1.4.0 < FL MGUARD 1102 (No. 1153079)* | affected |
| PHOENIX CONTACT | FL MGUARD | 1.4.0 < FL MGUARD 1105 (No. 1153078)* | affected |
Weaknesses
- CWE-401: CWE-401 Improper Release of Memory Before Removing Last Reference
Workarounds
To prevent the possibility of an attack, it is recommended to deactivate remote logging.
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.