CVE-2024-7698 MEDIUM

CVE-2024-7698: Phoenix Contact: Access to CSRF tokens of higher privileged users in MGUARD products

Vendor Phoenix Contact
Product FL MGUARD 2102
Weakness CWE-201
Published September 10, 2024
Last update August 22, 2025

CVSS base score

5.7/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction Required
Confidentiality High
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

What the vulnerability does

01Description

A low privileged remote attacker can get access to CSRF tokens of higher privileged users which can be abused to mount CSRF attacks.

Key dates

02Disclosure timeline

September 10, 2024 CVE published
August 22, 2025 Record updated