Wago: Security Vulnerabilities
CODESYS V2 runtime system before 2.4.7.55 has Improper Input Validation.
CVSS Score
7.5
EPSS Score
0.004
Published
2021-05-25
CODESYS V2 runtime system SP before 2.4.7.55 has Improper Neutralization of Special Elements used in an OS Command.
CVSS Score
5.3
EPSS Score
0.001
Published
2021-05-25
On WAGO PFC200 devices in different firmware versions with special crafted packets an attacker with network access to the device could cause a denial of service for the login service of the runtime.
CVSS Score
5.3
EPSS Score
0.001
Published
2021-05-24
On WAGO PFC200 devices in different firmware versions with special crafted packets an authorised attacker with network access to the device can access the file system with higher privileges.
CVSS Score
9.1
EPSS Score
0.002
Published
2021-05-24
In multiple managed switches by WAGO in different versions the webserver cookies of the web based UI contain user credentials.
CVSS Score
5.3
EPSS Score
0.001
Published
2021-05-13
In multiple managed switches by WAGO in different versions special crafted requests can lead to cookies being transferred to third parties.
CVSS Score
5.3
EPSS Score
0.002
Published
2021-05-13
In multiple managed switches by WAGO in different versions it is possible to read out the password hashes of all Web-based Management users.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-05-13
In multiple managed switches by WAGO in different versions without authorization and with specially crafted packets it is possible to create users.
CVSS Score
10.0
EPSS Score
0.001
Published
2021-05-13
In multiple managed switches by WAGO in different versions the activated directory listing provides an attacker with the index of the resources located inside the directory.
CVSS Score
5.3
EPSS Score
0.002
Published
2021-05-13
In multiple managed switches by WAGO in different versions an attacker may trick a legitimate user to click a link to inject possible malicious code into the Web-Based Management.
CVSS Score
8.8
EPSS Score
0.004
Published
2021-05-13