Wago: >> 852-1505 Firmware Security Vulnerabilities
WAGO 852-303 before FW06, 852-1305 before FW06, and 852-1505 before FW03 devices contain hardcoded private keys for the SSH daemon. The fingerprint of the SSH host key from the corresponding SSH daemon matches the embedded private key.
CVSS Score
9.8
EPSS Score
0.008
Published
2019-06-17
WAGO 852-303 before FW06, 852-1305 before FW06, and 852-1505 before FW03 devices contain hardcoded users and passwords that can be used to login via SSH and TELNET.
CVSS Score
9.8
EPSS Score
0.006
Published
2019-06-17