CVE-2021-34598

HIGH

Phoenixcontact FL Mguard 1102 Firmware - Memory Leak

Title source: rule

Description

In Phoenix Contact FL MGUARD 1102 and 1105 in Versions 1.4.0, 1.4.1 and 1.5.0 the remote logging functionality is impaired by the lack of memory release for data structures from syslog-ng when remote logging is active

References (1)

[Third Party Advisory] https://cert.vde.com/en/advisories/VDE-2021-046/

Scores

CVSS v3 7.5

EPSS 0.0027

EPSS Percentile 50.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-401

Status published

Affected Products (6)

phoenixcontact/fl_mguard_1102_firmware

phoenixcontact/fl_mguard_1105_firmware

Timeline

Published Nov 10, 2021

Tracked Since Feb 18, 2026