Phoenix Contact Fl Mguard Centerport vulnerabilities

CVE-2023-2673 [MEDIUM] CWE-1287 CVE-2023-2673: Improper Input Validation vulnerability in PHOENIX CONTACT FL/TC MGUARD Family in multiple versions Improper Input Validation vulnerability in PHOENIX CONTACT FL/TC MGUARD Family in multiple versions may allow UDP packets to bypass the filter rules and access the solely connected device behind the MGUARD which can be used for flooding attacks.

CVE-2022-3480 [HIGH] CWE-770 CVE-2022-3480: A remote, unauthenticated attacker could cause a denial-of-service of PHOENIX CONTACT FL MGUARD and A remote, unauthenticated attacker could cause a denial-of-service of PHOENIX CONTACT FL MGUARD and TC MGUARD devices below version 8.9.0 by sending a larger number of unauthenticated HTTPS connections originating from different source IP’s. Configuring firewall limits for incoming connections cannot prevent the issue.