750\-363_firmware - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
750\-363_firmware
(Wago)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	3

Date	Id	Summary	Products	Score	Patch	Annotated
2023-06-26	CVE-2023-1150	Uncontrolled resource consumption in Series WAGO 750-3x/-8x products may allow an unauthenticated remote attacker to DoS the MODBUS server with specially crafted packets.	750\-362\/000\-001_firmware, 750\-362\/040\-000_firmware, 750\-362_firmware, 750\-363\/040\-000_firmware, 750\-363_firmware, 750\-364\/040\-010_firmware, 750\-365\/040\-010_firmware, 750\-823_firmware, 750\-832\/000\-002_firmware, 750\-832_firmware, 750\-862_firmware, 750\-890\/025\-000_firmware, 750\-890\/025\-001_firmware, 750\-890\/025\-002_firmware, 750\-890\/040\-000_firmware, 750\-890_firmware, 750\-891_firmware, 750\-893_firmware	7.5
2020-09-30	CVE-2020-12506	Improper Authentication vulnerability in WAGO 750-8XX series with FW version <= FW03 allows an attacker to change the settings of the devices by sending specifically constructed requests without authentication This issue affects: WAGO 750-362, WAGO 750-363, WAGO 750-823, WAGO 750-832/xxx-xxx, WAGO 750-862, WAGO 750-891, WAGO 750-890/xxx-xxx in versions FW03 and prior versions.	750\-362_firmware, 750\-363_firmware, 750\-823_firmware, 750\-832_firmware, 750\-862_firmware, 750\-890_firmware, 750\-891_firmware	9.1
2021-08-31	CVE-2021-34578	This vulnerability allows an attacker who has access to the WBM to read and write settings-parameters of the device by sending specifically constructed requests without authentication on multiple WAGO PLCs in firmware versions up to FW07.	750\-362_firmware, 750\-363_firmware, 750\-823_firmware, 750\-832\/000\-002_firmware, 750\-832_firmware, 750\-862_firmware, 750\-890\/025\-000_firmware, 750\-890\/025\-001_firmware, 750\-890\/025\-002_firmware, 750\-890\/040\-000_firmware, 750\-891_firmware, 750\-893_firmware	8.1