2021-05-24
|
CVE-2021-21000
|
On WAGO PFC200 devices in different firmware versions with special crafted packets an attacker with network access to the device could cause a denial of service for the login service of the runtime.
|
750\-8202_firmware, 750\-8203_firmware, 750\-8204_firmware, 750\-8206_firmware, 750\-8207_firmware, 750\-8208_firmware, 750\-8210_firmware, 750\-8211_firmware, 750\-8212_firmware, 750\-8213_firmware, 750\-8214_firmware, 750\-8216_firmware, 750\-8217_firmware, 750\-823_firmware, 750\-829_firmware, 750\-831_firmware, 750\-832_firmware, 750\-852_firmware, 750\-862_firmware, 750\-880_firmware, 750\-881_firmware, 750\-882_firmware, 750\-885_firmware, 750\-889_firmware, 750\-890_firmware, 750\-891_firmware, 750\-893_firmware
|
7.5
|
|
|
2021-05-24
|
CVE-2021-21001
|
On WAGO PFC200 devices in different firmware versions with special crafted packets an authorised attacker with network access to the device can access the file system with higher privileges.
|
750\-8202_firmware, 750\-8203_firmware, 750\-8204_firmware, 750\-8206_firmware, 750\-8207_firmware, 750\-8208_firmware, 750\-8210_firmware, 750\-8211_firmware, 750\-8212_firmware, 750\-8213_firmware, 750\-8214_firmware, 750\-8216_firmware, 750\-8217_firmware, 750\-823_firmware, 750\-829_firmware, 750\-831_firmware, 750\-832_firmware, 750\-852_firmware, 750\-862_firmware, 750\-880_firmware, 750\-881_firmware, 750\-882_firmware, 750\-885_firmware, 750\-889_firmware, 750\-890_firmware, 750\-891_firmware, 750\-893_firmware
|
6.5
|
|
|
2021-08-31
|
CVE-2021-34578
|
This vulnerability allows an attacker who has access to the WBM to read and write settings-parameters of the device by sending specifically constructed requests without authentication on multiple WAGO PLCs in firmware versions up to FW07.
|
750\-362_firmware, 750\-363_firmware, 750\-823_firmware, 750\-832\/000\-002_firmware, 750\-832_firmware, 750\-862_firmware, 750\-890\/025\-000_firmware, 750\-890\/025\-001_firmware, 750\-890\/025\-002_firmware, 750\-890\/040\-000_firmware, 750\-891_firmware, 750\-893_firmware
|
8.1
|
|
|
2023-06-26
|
CVE-2023-1150
|
Uncontrolled resource consumption in Series WAGO 750-3x/-8x products may allow an unauthenticated remote attacker to DoS the MODBUS server with specially crafted packets.
|
750\-362\/000\-001_firmware, 750\-362\/040\-000_firmware, 750\-362_firmware, 750\-363\/040\-000_firmware, 750\-363_firmware, 750\-364\/040\-010_firmware, 750\-365\/040\-010_firmware, 750\-823_firmware, 750\-832\/000\-002_firmware, 750\-832_firmware, 750\-862_firmware, 750\-890\/025\-000_firmware, 750\-890\/025\-001_firmware, 750\-890\/025\-002_firmware, 750\-890\/040\-000_firmware, 750\-890_firmware, 750\-891_firmware, 750\-893_firmware
|
N/A
|
|
|
2023-06-26
|
CVE-2023-1619
|
Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high privileges to DoS the device by sending a malformed packet.
|
750\-331_firmware, 750\-8202\/000\-011_firmware, 750\-8202\/000\-012_firmware, 750\-8202\/000\-022_firmware, 750\-8202\/025\-000_firmware, 750\-8202\/025\-001_firmware, 750\-8202\/025\-002_firmware, 750\-8202\/040\-000_firmware, 750\-8202\/040\-001_firmware, 750\-8202_firmware, 750\-8203\/025\-000_firmware, 750\-8203_firmware, 750\-8204\/025\-000_firmware, 750\-8204_firmware, 750\-8206\/025\-000_firmware, 750\-8206\/025\-001_firmware, 750\-8206\/040\-000_firmware, 750\-8206\/040\-001_firmware, 750\-8206_firmware, 750\-8207\/025\-000_firmware, 750\-8207\/025\-001_firmware, 750\-8207_firmware, 750\-8208\/025\-000_firmware, 750\-8208\/025\-001_firmware, 750\-8208_firmware, 750\-8210\/025\-000_firmware, 750\-8210\/040\-000_firmware, 750\-8210_firmware, 750\-8211\/040\-000_firmware, 750\-8211\/040\-001_firmware, 750\-8211_firmware, 750\-8212\/000\-100_firmware, 750\-8212\/025\-000_firmware, 750\-8212\/025\-001_firmware, 750\-8212\/025\-002_firmware, 750\-8212\/040\-000_firmware, 750\-8212\/040\-001_firmware, 750\-8212\/040\-010_firmware, 750\-8212_firmware, 750\-8213\/040\-010_firmware, 750\-8213_firmware, 750\-8214_firmware, 750\-8215_firmware, 750\-8216\/025\-000_firmware, 750\-8216\/025\-001_firmware, 750\-8216\/040\-000_firmware, 750\-8216_firmware, 750\-8217\/025\-000_firmware, 750\-8217\/600\-000_firmware, 750\-8217\/625\-000_firmware, 750\-8217_firmware, 750\-823_firmware, 750\-829_firmware, 750\-831\/000\-002_firmware, 750\-831_firmware, 750\-832\/000\-002_firmware, 750\-832_firmware, 750\-852_firmware, 750\-862_firmware, 750\-880\/025\-000_firmware, 750\-880\/025\-001_firmware, 750\-880\/025\-002_firmware, 750\-880\/040\-000_firmware, 750\-880_firmware, 750\-881_firmware, 750\-882_firmware, 750\-885\/025\-000_firmware, 750\-885_firmware, 750\-889_firmware, 750\-890\/025\-000_firmware, 750\-890\/025\-001_firmware, 750\-890\/025\-002_firmware, 750\-890\/040\-000_firmware, 750\-890_firmware, 750\-891_firmware, 750\-893_firmware
|
N/A
|
|
|
2023-06-26
|
CVE-2023-1620
|
Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high privileges to DoS the device by sending a specifically crafted packet to the CODESYS V2 runtime.
|
750\-331_firmware, 750\-8202\/000\-011_firmware, 750\-8202\/000\-012_firmware, 750\-8202\/000\-022_firmware, 750\-8202\/025\-000_firmware, 750\-8202\/025\-001_firmware, 750\-8202\/025\-002_firmware, 750\-8202\/040\-000_firmware, 750\-8202\/040\-001_firmware, 750\-8202_firmware, 750\-8203\/025\-000_firmware, 750\-8203_firmware, 750\-8204\/025\-000_firmware, 750\-8204_firmware, 750\-8206\/025\-000_firmware, 750\-8206\/025\-001_firmware, 750\-8206\/040\-000_firmware, 750\-8206\/040\-001_firmware, 750\-8206_firmware, 750\-8207\/025\-000_firmware, 750\-8207\/025\-001_firmware, 750\-8207_firmware, 750\-8208\/025\-000_firmware, 750\-8208\/025\-001_firmware, 750\-8208_firmware, 750\-8210\/025\-000_firmware, 750\-8210\/040\-000_firmware, 750\-8210_firmware, 750\-8211\/040\-000_firmware, 750\-8211\/040\-001_firmware, 750\-8211_firmware, 750\-8212\/000\-100_firmware, 750\-8212\/025\-000_firmware, 750\-8212\/025\-001_firmware, 750\-8212\/025\-002_firmware, 750\-8212\/040\-000_firmware, 750\-8212\/040\-001_firmware, 750\-8212\/040\-010_firmware, 750\-8212_firmware, 750\-8213\/040\-010_firmware, 750\-8213_firmware, 750\-8214_firmware, 750\-8215_firmware, 750\-8216\/025\-000_firmware, 750\-8216\/025\-001_firmware, 750\-8216\/040\-000_firmware, 750\-8216_firmware, 750\-8217\/025\-000_firmware, 750\-8217\/600\-000_firmware, 750\-8217\/625\-000_firmware, 750\-8217_firmware, 750\-823_firmware, 750\-829_firmware, 750\-831\/000\-002_firmware, 750\-831_firmware, 750\-832\/000\-002_firmware, 750\-832_firmware, 750\-852_firmware, 750\-862_firmware, 750\-880\/025\-000_firmware, 750\-880\/025\-001_firmware, 750\-880\/025\-002_firmware, 750\-880\/040\-000_firmware, 750\-880_firmware, 750\-881_firmware, 750\-882_firmware, 750\-885\/025\-000_firmware, 750\-885_firmware, 750\-889_firmware, 750\-890\/025\-000_firmware, 750\-890\/025\-001_firmware, 750\-890\/025\-002_firmware, 750\-890\/040\-000_firmware, 750\-890_firmware, 750\-891_firmware, 750\-893_firmware
|
4.9
|
|
|
2020-09-30
|
CVE-2020-12506
|
Improper Authentication vulnerability in WAGO 750-8XX series with FW version <= FW03 allows an attacker to change the settings of the devices by sending specifically constructed requests without authentication This issue affects: WAGO 750-362, WAGO 750-363, WAGO 750-823, WAGO 750-832/xxx-xxx, WAGO 750-862, WAGO 750-891, WAGO 750-890/xxx-xxx in versions FW03 and prior versions.
|
750\-362_firmware, 750\-363_firmware, 750\-823_firmware, 750\-832_firmware, 750\-862_firmware, 750\-890_firmware, 750\-891_firmware
|
9.1
|
|
|