Vulnerability Details CVE-2020-12506
Improper Authentication vulnerability in WAGO 750-8XX series with FW version <= FW03 allows an attacker to change the settings of the devices by sending specifically constructed requests without authentication This issue affects: WAGO 750-362, WAGO 750-363, WAGO 750-823, WAGO 750-832/xxx-xxx, WAGO 750-862, WAGO 750-891, WAGO 750-890/xxx-xxx in versions FW03 and prior versions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.4%
CVSS Severity
CVSS v3 Score 9.1
CVSS v2 Score 6.4
References
Products affected by CVE-2020-12506
-
cpe:2.3:h:wago:750-362:-
-
cpe:2.3:h:wago:750-363:-
-
cpe:2.3:h:wago:750-823:-
-
cpe:2.3:h:wago:750-832:-
-
cpe:2.3:h:wago:750-862:-
-
cpe:2.3:h:wago:750-890:-
-
cpe:2.3:h:wago:750-891:-
-
cpe:2.3:o:wago:750-362_firmware:-
-
cpe:2.3:o:wago:750-362_firmware:fw03
-
cpe:2.3:o:wago:750-363_firmware:-
-
cpe:2.3:o:wago:750-363_firmware:fw03
-
cpe:2.3:o:wago:750-823_firmware:-
-
cpe:2.3:o:wago:750-823_firmware:fw03
-
cpe:2.3:o:wago:750-832_firmware:-
-
cpe:2.3:o:wago:750-832_firmware:fw03
-
cpe:2.3:o:wago:750-862_firmware:-
-
cpe:2.3:o:wago:750-862_firmware:fw03
-
cpe:2.3:o:wago:750-890_firmware:-
-
cpe:2.3:o:wago:750-890_firmware:fw03
-
cpe:2.3:o:wago:750-891_firmware:-
-
cpe:2.3:o:wago:750-891_firmware:fw03