CRITICAL
Phoenixcontact
CVE published 2017-02-13
CVE-2017-5159
CVE-2017-5159 describes a password-reset flaw affecting Phoenix Contact mGuard devices updated to firmware version 8.4.0. According to the NVD record, completing an update through the update-upload facility succeeds but resets the admin user password to its default value. That can leave affected devices exposed to unauthorized administrative access if the default credential is known or not immediately cha [truncated]