CVE-2024-7699

HIGH EPSS 50.8%
Published Sep 10, 20241y ago ยท Modified Jun 17, 20261w ago
8.8 CVSS 3.1
High
Find Similar
Published Sep 10, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

An low privileged remote attacker can execute OS commands with root privileges due to improper neutralization of special elements in user data.

CVSS Details

Base Score
8.8
Exploitability
2.8
Impact
5.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
50.8% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-78 OS Command Injection Injection

Affected Products 72

VendorProductVersionRange
phoenixcontacttc_mguard_rs4000_4g_vzw_vpn_firmware* <8.9.3
phoenixcontacttc_mguard_rs4000_4g_vzw_vpn*any
phoenixcontacttc_mguard_rs4000_4g_vpn_firmware* <8.9.3
phoenixcontacttc_mguard_rs4000_4g_vpn*any
phoenixcontacttc_mguard_rs4000_4g_att_vpn_firmware* <8.9.3
phoenixcontacttc_mguard_rs4000_4g_att_vpn*any
phoenixcontacttc_mguard_rs4000_3g_vpn_firmware* <8.9.3
phoenixcontacttc_mguard_rs4000_3g_vpn*any
phoenixcontacttc_mguard_rs2000_4g_vzw_vpn_firmware* <8.9.3
phoenixcontacttc_mguard_rs2000_4g_vzw_vpn*any
phoenixcontacttc_mguard_rs2000_4g_vpn_firmware* <8.9.3
phoenixcontacttc_mguard_rs2000_4g_vpn*any
phoenixcontacttc_mguard_rs2000_4g_att_vpn_firmware* <8.9.3
phoenixcontacttc_mguard_rs2000_4g_att_vpn*any
phoenixcontacttc_mguard_rs2000_3g_vpn_firmware* <8.9.3
phoenixcontacttc_mguard_rs2000_3g_vpn*any
phoenixcontactfl_mguard_smart2_vpn_firmware* <8.9.3
phoenixcontactfl_mguard_smart2_vpn*any
phoenixcontactfl_mguard_smart2_firmware* <8.9.3
phoenixcontactfl_mguard_smart2*any
phoenixcontactfl_mguard_rs4004_tx\/dtx_vpn_firmware* <8.9.3
phoenixcontactfl_mguard_rs4004_tx\/dtx_vpn*any
phoenixcontactfl_mguard_rs4004_tx\/dtx_firmware* <8.9.3
phoenixcontactfl_mguard_rs4004_tx\/dtx*any
phoenixcontactfl_mguard_rs4000_tx\/tx_vpn_firmware* <8.9.3
phoenixcontactfl_mguard_rs4000_tx\/tx_vpn*any
phoenixcontactfl_mguard_rs4000_tx\/tx-p_firmware* <8.9.3
phoenixcontactfl_mguard_rs4000_tx\/tx-p*any
phoenixcontactfl_mguard_rs4000_tx\/tx-m_firmware* <8.9.3
phoenixcontactfl_mguard_rs4000_tx\/tx-m*any
phoenixcontactfl_mguard_rs4000_tx\/tx_firmware* <8.9.3
phoenixcontactfl_mguard_rs4000_tx\/tx*any
phoenixcontactfl_mguard_rs2005_tx_vpn_firmware* <8.9.3
phoenixcontactfl_mguard_rs2005_tx_vpn*any
phoenixcontactfl_mguard_rs2000_tx\/tx_vpn_firmware* <8.9.3
phoenixcontactfl_mguard_rs2000_tx\/tx_vpn*any
phoenixcontactfl_mguard_rs2000_tx\/tx-b_firmware* <8.9.3
phoenixcontactfl_mguard_rs2000_tx\/tx-b*any
phoenixcontactfl_mguard_pcie4000_vpn_firmware* <8.9.3
phoenixcontactfl_mguard_pcie4000_vpn*any
phoenixcontactfl_mguard_pcie4000_firmware* <8.9.3
phoenixcontactfl_mguard_pcie4000*any
phoenixcontactfl_mguard_pci4000_vpn_firmware* <8.9.3
phoenixcontactfl_mguard_pci4000_vpn*any
phoenixcontactfl_mguard_pci4000_firmware* <8.9.3
phoenixcontactfl_mguard_pci4000*any
phoenixcontactfl_mguard_gt\/gt_vpn_firmware* <8.9.3
phoenixcontactfl_mguard_gt\/gt_vpn*any
phoenixcontactfl_mguard_gt\/gt_firmware* <8.9.3
phoenixcontactfl_mguard_gt\/gt*any
phoenixcontactfl_mguard_delta_tx\/tx_vpn_firmware* <8.9.3
phoenixcontactfl_mguard_delta_tx\/tx_vpn*any
phoenixcontactfl_mguard_delta_tx\/tx_firmware* <8.9.3
phoenixcontactfl_mguard_delta_tx\/tx*any
phoenixcontactfl_mguard_core_tx_vpn_firmware* <8.9.3
phoenixcontactfl_mguard_core_tx_vpn*any
phoenixcontactfl_mguard_core_tx_firmware* <8.9.3
phoenixcontactfl_mguard_core_tx*any
phoenixcontactfl_mguard_centerport_vpn-1000_firmware* <8.9.3
phoenixcontactfl_mguard_centerport_vpn-1000*any
phoenixcontactfl_mguard_4305_firmware* <10.4.1
phoenixcontactfl_mguard_4305*any
phoenixcontactfl_mguard_4302_firmware* <10.4.1
phoenixcontactfl_mguard_4302*any
phoenixcontactfl_mguard_4102_pcie_firmware* <10.4.1
phoenixcontactfl_mguard_4102_pcie*any
phoenixcontactfl_mguard_4102_pci_firmware* <10.4.1
phoenixcontactfl_mguard_4102_pci*any
phoenixcontactfl_mguard_2105_firmware* <10.4.1
phoenixcontactfl_mguard_2105*any
phoenixcontactfl_mguard_2102_firmware* <10.4.1
phoenixcontactfl_mguard_2102*any

References 1

  • cert.vde.com https://cert.vde.com/en/advisories/VDE-2024-039
    Third Party Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.