Vulnerability Details CVE-2019-10712
The Web-GUI on WAGO Series 750-88x (750-330, 750-352, 750-829, 750-831, 750-852, 750-880, 750-881, 750-882, 750-884, 750-885, 750-889) and Series 750-87x (750-830, 750-849, 750-871, 750-872, 750-873) devices has undocumented service access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 75.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- http://www.securityfocus.com/bid/108482
- https://cert.vde.com/de-de/advisories/vde-2019-008
- https://lists.apache.org/thread.html/r0066c1e862613de402fee04e81cbe00bcd64b64a2711beb9a13c3b25%40%3Ccommits.cassandra.apache.org%3E
- https://lists.apache.org/thread.html/r25e25973e9577c62fd0221b4b52990851adf11cbe33036bd67d4b13d%40%3Ccommits.cassandra.apache.org%3E
- https://lists.apache.org/thread.html/r37eb6579fa0bf94a72b6c978e2fee96f68a2b1b3ac1b1ce60aee86cf%40%3Ccommits.cassandra.apache.org%3E
- https://lists.apache.org/thread.html/r386966780034aadee69ffd82d44555117c9339545b9ce990fe490a3e%40%3Ccommits.cassandra.apache.org%3E
- https://lists.apache.org/thread.html/r80e8882c86c9c17a57396a5ef7c4f08878d629a0291243411be0de3a%40%3Ccommits.cassandra.apache.org%3E
- https://lists.apache.org/thread.html/ra37700b842790883b9082e6b281fb7596f571b13078a4856cd38f2c2%40%3Ccommits.cassandra.apache.org%3E
- https://lists.apache.org/thread.html/rb47911c179c9f3e8ea3f134b5645e63cd20c6fc63bd0b43ab5864bd1%40%3Ccommits.cassandra.apache.org%3E
- http://www.securityfocus.com/bid/108482
- https://cert.vde.com/de-de/advisories/vde-2019-008
- https://lists.apache.org/thread.html/r0066c1e862613de402fee04e81cbe00bcd64b64a2711beb9a13c3b25%40%3Ccommits.cassandra.apache.org%3E
- https://lists.apache.org/thread.html/r25e25973e9577c62fd0221b4b52990851adf11cbe33036bd67d4b13d%40%3Ccommits.cassandra.apache.org%3E
- https://lists.apache.org/thread.html/r37eb6579fa0bf94a72b6c978e2fee96f68a2b1b3ac1b1ce60aee86cf%40%3Ccommits.cassandra.apache.org%3E
- https://lists.apache.org/thread.html/r386966780034aadee69ffd82d44555117c9339545b9ce990fe490a3e%40%3Ccommits.cassandra.apache.org%3E
- https://lists.apache.org/thread.html/r80e8882c86c9c17a57396a5ef7c4f08878d629a0291243411be0de3a%40%3Ccommits.cassandra.apache.org%3E
- https://lists.apache.org/thread.html/ra37700b842790883b9082e6b281fb7596f571b13078a4856cd38f2c2%40%3Ccommits.cassandra.apache.org%3E
- https://lists.apache.org/thread.html/rb47911c179c9f3e8ea3f134b5645e63cd20c6fc63bd0b43ab5864bd1%40%3Ccommits.cassandra.apache.org%3E
Products affected by CVE-2019-10712
-
cpe:2.3:h:wago:750-330:-
-
cpe:2.3:h:wago:750-352:-
-
cpe:2.3:h:wago:750-829:-
-
cpe:2.3:h:wago:750-830:-
-
cpe:2.3:h:wago:750-831:-
-
cpe:2.3:h:wago:750-849:-
-
cpe:2.3:h:wago:750-852:-
-
cpe:2.3:h:wago:750-871:-
-
cpe:2.3:h:wago:750-872:-
-
cpe:2.3:h:wago:750-873:-
-
cpe:2.3:h:wago:750-880:-
-
cpe:2.3:h:wago:750-881:-
-
cpe:2.3:h:wago:750-882:-
-
cpe:2.3:h:wago:750-884:-
-
cpe:2.3:h:wago:750-885:-
-
cpe:2.3:h:wago:750-889:-
-
cpe:2.3:o:wago:750-330_firmware:*
-
cpe:2.3:o:wago:750-352_firmware:*
-
cpe:2.3:o:wago:750-829_firmware:-
-
cpe:2.3:o:wago:750-829_firmware:09
-
cpe:2.3:o:wago:750-829_firmware:10
-
cpe:2.3:o:wago:750-830_firmware:*
-
cpe:2.3:o:wago:750-831_firmware:-
-
cpe:2.3:o:wago:750-831_firmware:09
-
cpe:2.3:o:wago:750-831_firmware:10
-
cpe:2.3:o:wago:750-849_firmware:01.01.27
-
cpe:2.3:o:wago:750-849_firmware:01.02.05
-
cpe:2.3:o:wago:750-852_firmware:-
-
cpe:2.3:o:wago:750-852_firmware:10
-
cpe:2.3:o:wago:750-871_firmware:*
-
cpe:2.3:o:wago:750-872_firmware:*
-
cpe:2.3:o:wago:750-873_firmware:*
-
cpe:2.3:o:wago:750-880_firmware:-
-
cpe:2.3:o:wago:750-880_firmware:10
-
cpe:2.3:o:wago:750-881_firmware:-
-
cpe:2.3:o:wago:750-881_firmware:01.01.27
-
cpe:2.3:o:wago:750-881_firmware:01.02.05
-
cpe:2.3:o:wago:750-881_firmware:10
-
cpe:2.3:o:wago:750-882_firmware:-
-
cpe:2.3:o:wago:750-882_firmware:10
-
cpe:2.3:o:wago:750-884_firmware:*
-
cpe:2.3:o:wago:750-885_firmware:-
-
cpe:2.3:o:wago:750-885_firmware:10
-
cpe:2.3:o:wago:750-889_firmware:-
-
cpe:2.3:o:wago:750-889_firmware:10