high
7.8
CWE
20 354
Advisory Published
Updated

CVE-2018-5441: Input Validation

First published: Tue Jan 30 2018(Updated: )

An Improper Validation of Integrity Check Value issue was discovered in PHOENIX CONTACT mGuard firmware versions 7.2 to 8.6.0. mGuard devices rely on internal checksums for verification of the internal integrity of the update packages. Verification may not always be performed correctly, allowing an attacker to modify firmware update packages.

Credit: ics-cert@hq.dhs.gov

Affected SoftwareAffected VersionHow to fix
Phoenixcontact Fl Mguard Centerport Firmware>=7.2.0<=8.6.0
Phoenixcontact Fl Mguard Centerport Firmware
Phoenixcontact Mguard Delta Tx/tx Firmware>=7.2.0<=8.6.0
Phoenixcontact Mguard Delta Tx/tx
Phoenix Contact mGuard Delta Tx/TX VPN Firmware>=7.2.0<=8.6.0
Phoenixcontact Mguard Delta Tx/tx Vpn
Phoenix Contact MGuard GT/GT Firmware>=7.2.0<=8.6.0
Phoenix Contact mGuard GT/GT
Phoenix Contact Mguard GT/GT VPN Firmware>=7.2.0<=8.6.0
Phoenix Contact mGuard GT/GT VPN
Phoenixcontact Mguard Pcie4000 Vpn Firmware>=7.2.0<=8.6.0
Phoenixcontact Mguard Pcie4000 Vpn Firmware
Phoenix Contact FL Mguard PCIe4000 VPN Firmware>=7.2.0<=8.6.0
Phoenixcontact Mguard Pcie4000 Vpn Firmware
Phoenix Contact mGuard RS2000 TX/TX VPN Firmware>=7.2.0<=8.6.0
Phoenixcontact Mguard Rs2000 Tx/tx Vpn
Phoenix Contact mGuard RS2000 Tx/TX-B Firmware>=7.2.0<=8.6.0
Phoenixcontact Mguard Rs2000 Tx/tx-b
Phoenixcontact Mguard Rs2005 Tx Vpn>=7.2.0<=8.6.0
Phoenixcontact Mguard Rs2005 Tx Vpn Firmware
Phoenixcontact Mguard Rs4000 Tx/tx Firmware>=7.2.0<=8.6.0
Phoenixcontact Mguard Rs4000 Tx/tx
Phoenixcontact Mguard RS4000 Tx/TX VPN Firmware>=7.2.0<=8.6.0
Phoenixcontact Mguard Rs4000 Tx/tx Vpn
Phoenixcontact Mguard Rs4000 Tx/tx Vpn-m Firmware>=7.2.0<=8.6.0
Phoenixcontact Mguard Rs4000 Tx/tx Vpn-m
Phoenixcontact Mguard Rs4000 Tx/tx-p Firmware>=7.2.0<=8.6.0
Phoenix Contact mGuard RS4000 TX/TX-P
Phoenixcontact Mguard Rs4004 Tx/dtx Firmware>=7.2.0<=8.6.0
Phoenix Contact mGuard RS4004 TX/DTX
Phoenixcontact Mguard Rs4004 Tx/dtx Vpn Firmware>=7.2.0<=8.6.0
Phoenixcontact Mguard Rs4004 Tx/dtx Vpn
Phoenix Contact mGuard Smart2 VPN Firmware>=7.2.0<=8.6.0
Phoenixcontact FL Mguard Smart2
Phoenix Contact mGuard Smart2 VPN Firmware>=7.2.0<=8.6.0
Phoenixcontact Mguard Smart2
Phoenixcontact Tc Mguard Rs2000 3g Vpn Firmware>=7.2.0<=8.6.0
Phoenixcontact Tc Mguard Rs2000 3g Vpn
Phoenixcontact Tc Mguard Rs4000 3g Vpn Firmware>=7.2.0<=8.6.0
Phoenix Contact mGuard RS4000 3G VPN
Phoenix Contact FL MGuard Core TX VPN Firmware>=7.2.0<=8.6.0
Phoenixcontact Fl Mguard Core Tx Vpn
Phoenixcontact Tc Mguard Rs2000 4g Vpn Firmware>=7.2.0<=8.6.0
Phoenix Contact TC Mguard RS2000 4G VZW VPN
Phoenix Contact TC MGuard RS4000 4G AT&T VPN Firmware>=7.2.0<=8.6.0
Phoenix Contact TC Mguard RS4000 4G VPN

Remedy

https://cert.vde.com/en-us/advisories/vde-2018-001

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2018-5441?

    CVE-2018-5441 has been classified with a medium severity level due to the improper validation of integrity check values.

  • How do I fix CVE-2018-5441?

    To mitigate CVE-2018-5441, update PHOENIX CONTACT mGuard firmware to versions beyond 8.6.0.

  • What devices are affected by CVE-2018-5441?

    CVE-2018-5441 affects mGuard devices running firmware versions between 7.2.0 and 8.6.0.

  • Can CVE-2018-5441 be exploited remotely?

    Yes, CVE-2018-5441 can potentially be exploited remotely due to flaws in the verification of update packages.

  • What is the impact of CVE-2018-5441 on device integrity?

    CVE-2018-5441 may allow attackers to install unauthorized firmware updates, compromising device integrity.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203