Vulnerability Details CVE-2015-6472
WAGO IO 750-849 01.01.27 and 01.02.05, WAGO IO 750-881, and WAGO IO 758-870 have weak credential management.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.5%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 5.0
References
- http://packetstormsecurity.com/files/136077/WAGO-IO-PLC-758-870-750-849-Credential-Management-Privilege-Separation.html
- http://seclists.org/fulldisclosure/2016/Mar/4
- http://www.securityfocus.com/bid/84138
- http://packetstormsecurity.com/files/136077/WAGO-IO-PLC-758-870-750-849-Credential-Management-Privilege-Separation.html
- http://seclists.org/fulldisclosure/2016/Mar/4
- http://www.securityfocus.com/bid/84138
Products affected by CVE-2015-6472
-
cpe:2.3:h:wago:750-849:-
-
cpe:2.3:h:wago:750-881:-
-
cpe:2.3:h:wago:758-870:-
-
cpe:2.3:o:wago:750-849_firmware:01.01.27
-
cpe:2.3:o:wago:750-849_firmware:01.02.05
-
cpe:2.3:o:wago:750-881_firmware:01.01.27
-
cpe:2.3:o:wago:750-881_firmware:01.02.05
-
cpe:2.3:o:wago:758-870_firmware:01.01.27
-
cpe:2.3:o:wago:758-870_firmware:01.02.05