Vulnerability Details CVE-2018-16210
WAGO 750-88X and WAGO 750-89X Ethernet Controller devices, versions 01.09.18(13) and before, have XSS in the SNMP configuration via the webserv/cplcfg/snmp.ssi SNMP_DESC or SNMP_LOC_SNMP_CONT field.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.1%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
Products affected by CVE-2018-16210
-
cpe:2.3:h:wago:750-352:-
-
cpe:2.3:h:wago:750-362:-
-
cpe:2.3:h:wago:750-363:-
-
cpe:2.3:h:wago:750-823:-
-
cpe:2.3:h:wago:750-831:-
-
cpe:2.3:h:wago:750-832:-
-
cpe:2.3:h:wago:750-852:-
-
cpe:2.3:h:wago:750-862:-
-
cpe:2.3:h:wago:750-880:-
-
cpe:2.3:h:wago:750-881:-
-
cpe:2.3:h:wago:750-889:-
-
cpe:2.3:h:wago:750-890:-
-
cpe:2.3:h:wago:750-891:-
-
cpe:2.3:h:wago:wago_750-881_ethernet_controller_devices:-
-
cpe:2.3:o:wago:750-352_firmware:*
-
cpe:2.3:o:wago:750-362_firmware:-
-
cpe:2.3:o:wago:750-363_firmware:-
-
cpe:2.3:o:wago:750-823_firmware:-
-
cpe:2.3:o:wago:750-831_firmware:-
-
cpe:2.3:o:wago:750-831_firmware:09
-
cpe:2.3:o:wago:750-831_firmware:10
-
cpe:2.3:o:wago:750-832_firmware:-
-
cpe:2.3:o:wago:750-852_firmware:-
-
cpe:2.3:o:wago:750-852_firmware:10
-
cpe:2.3:o:wago:750-862_firmware:-
-
cpe:2.3:o:wago:750-880_firmware:-
-
cpe:2.3:o:wago:750-880_firmware:10
-
cpe:2.3:o:wago:750-881_firmware:-
-
cpe:2.3:o:wago:750-881_firmware:01.01.27
-
cpe:2.3:o:wago:750-881_firmware:01.02.05
-
cpe:2.3:o:wago:750-881_firmware:10
-
cpe:2.3:o:wago:750-889_firmware:-
-
cpe:2.3:o:wago:750-889_firmware:10
-
cpe:2.3:o:wago:750-890_firmware:-
-
cpe:2.3:o:wago:750-891_firmware:-
-
cpe:2.3:o:wago:wago_750-881_ethernet_controller_devices_firmware:01.08.01(10)
-
cpe:2.3:o:wago:wago_750-881_ethernet_controller_devices_firmware:01.09.18(13)