CVE-2023-2673

Name: CVE-2023-2673
Creator: NVD / NIST
Published: 2023-06-13T07:15:46.46+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

MEDIUMCVSS 5.3/10EPSS 0.62%

Last modified Jun 17, 2026

CVE-2023-2673 is a medium-severity vulnerability rated 5.3/10 on the CVSS scale. Improper Input Validation vulnerability in PHOENIX CONTACT FL/TC MGUARD Family in multiple versions may allow UDP packets to bypass the filter rules and access the solely connected device behind the MGUARD which can be used for flooding attacks.. EPSS estimates a 0.62% chance of exploitation in the next 30 days.

Description

Improper Input Validation vulnerability in PHOENIX CONTACT FL/TC MGUARD Family in multiple versions may allow UDP packets to bypass the filter rules and access the solely connected device behind the MGUARD which can be used for flooding attacks.

Metrics

CVSS 3.1

5.3/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

EPSS Probability

0.62%

45.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-1287

Affected Software

Vendor	Product	Versions
Phoenixcontact	Fl Mguard 2102 Firmware	<= 10.1.1
Phoenixcontact	Fl Mguard 4102 Pci Firmware	<= 10.1.1
Phoenixcontact	Fl Mguard 4102 Pcie Firmware	<= 10.1.1
Phoenixcontact	Fl Mguard 4302 Firmware	<= 10.1.1
Phoenixcontact	Fl Mguard Centerport Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Centerport Vpn-1000 Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Core Tx Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Core Tx Vpn Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Delta Tx\/Tx Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Delta Tx\/Tx Vpn Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Gt\/Gt Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Gt\/Gt Vpn Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Pci4000 Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Pci4000 Vpn Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Pcie4000 Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Pcie4000 Vpn Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Rs2000 Tx\/Tx-B Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Rs2000 Tx\/Tx Vpn Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Rs2005 Tx Vpn Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Rs4000 Tx\/Tx-M Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Rs4000 Tx\/Tx-P Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Rs4000 Tx\/Tx Vpn Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Rs4004 Tx\/Dtx Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Rs4004 Tx\/Dtx Vpn Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Smart2 Firmware	<= 8.9.0
Phoenixcontact	Fl Mguard Smart2 Vpn Firmware	<= 8.9.0

References

https://cert.vde.com/en/advisories/VDE-2023-010/Mitigation, Third Party Advisory
https://cert.vde.com/en/advisories/VDE-2023-010/Mitigation, Third Party Advisory

Timeline

Published: Jun 13, 2023
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2023-2673?

How severe is CVE-2023-2673?

CVE-2023-2673 has a CVSS score of 5.3/10 (MEDIUM severity). The EPSS model estimates a 0.62% probability of exploitation in the next 30 days.

How do I fix CVE-2023-2673?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2023-2673?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST