Vulnerability Details : CVE-2018-10731
All Phoenix Contact managed FL SWITCH 3xxx, 4xxx, 48xx products running firmware version 1.0 to 1.33 are prone to buffer overflows when handling very large cookies (a different vulnerability than CVE-2018-10728).
Vulnerability category: Overflow
Products affected by CVE-2018-10731
- cpe:2.3:o:phoenixcontact:fl_switch_3005_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 3005t FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_3005t_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 3004t-fx FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_3004t-fx_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 3004t-fx St FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_3004t-fx_st_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 3008 FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_3008_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 3008t FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_3008t_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 3006t-2fx FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_3006t-2fx_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 3006t-2fx St FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_3006t-2fx_st_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 3012e-2sfx FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_3012e-2sfx_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 3016e FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_3016e_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 3016 FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_3016_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 3016t FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_3016t_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 3006t-2fx Sm FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_3006t-2fx_sm_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 4008t-2sfp FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_4008t-2sfp_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 4008t-2gt-4fx Sm FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_4008t-2gt-4fx_sm_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 4008t-2gt-3fx Sm FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_4008t-2gt-3fx_sm_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 4808e-16fx Lc-4gc FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_4808e-16fx_lc-4gc_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 4808e-16fx Sm-4gc FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_4808e-16fx_sm-4gc_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 4808e-16fx Sm St-4gc FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_4808e-16fx_sm_st-4gc_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 4808e-16fx St-4gc FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_4808e-16fx_st-4gc_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 4808e-16fx-4gc FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_4808e-16fx-4gc_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 4808e-16fx Sm Lc-4gc FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_4808e-16fx_sm_lc-4gc_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 4012t 2gt 2fx FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_4012t_2gt_2fx_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 4012t-2gt-2fx St FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_4012t-2gt-2fx_st_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 4824e-4gc FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_4824e-4gc_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 4800e-24fx-4gc FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_4800e-24fx-4gc_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 4800e-24fx Sm-4gc FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_4800e-24fx_sm-4gc_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 3012e-2fx Sm FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_3012e-2fx_sm_firmware:*:*:*:*:*:*:*:*
- Phoenixcontact » Fl Switch 4000t-8poe-2sfp-r FirmwareVersions from including (>=) 1.0 and up to, including, (<=) 1.33cpe:2.3:o:phoenixcontact:fl_switch_4000t-8poe-2sfp-r_firmware:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2018-10731
0.34%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 68 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-10731
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
9.3
|
HIGH | AV:N/AC:M/Au:N/C:C/I:C/A:C |
8.6
|
10.0
|
NIST | |
9.0
|
CRITICAL | CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H |
2.2
|
6.0
|
NIST |
CWE ids for CVE-2018-10731
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2018-10731
-
https://cert.vde.com/de-de/advisories/vde-2018-007
PHOENIX CONTACT FL SWITCH 3xxx/4xxx/48xx series - Stack-based Buffer Overflow in shared object file — German (Germany)Patch;Third Party Advisory
-
https://ics-cert.us-cert.gov/advisories/ICSA-18-137-02
PHOENIX CONTACT FL SWITCH 3xxx/4xxx/48xx Series | CISAPatch;Third Party Advisory;US Government Resource
-
http://www.securityfocus.com/bid/104231
PHOENIX CONTACT FL SWITCH Series Multiple Security VulnerabilitiesThird Party Advisory;VDB Entry
Jump to