Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wago pfc200 firmware vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-5082
An exploitable heap buffer overflow vulnerability exists in the iocheckd service I/O-Check functionality of WAGO PFC200 Firmware version 03.01.07(13), WAGO PFC200 Firmware version 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets can ...
Wago Pfc200 Firmware 03.00.39\\(12\\)
Wago Pfc200 Firmware 03.01.07\\(13\\)
Wago Pfc100 Firmware 03.00.39\\(12\\)
9.8
CVSSv3
CVE-2019-5075
An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of WAGO PFC200 Firmware versions 03.01.07(13) and 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets sent to the iocheckd service &...
Wago Pfc 200 Firmware 03.00.39\\(12\\)
Wago Pfc 200 Firmware 03.01.07\\(13\\)
Wago Pfc 100 Firmware 03.00.39\\(12\\)
9.8
CVSSv3
CVE-2019-5079
An exploitable heap buffer overflow vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC200 Firmware versions 03.01.07(13) and 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets can cause a heap ...
Wago Pfc 200 Firmware 03.00.39\\(12\\)
Wago Pfc 200 Firmware 03.01.07\\(13\\)
Wago Pfc 100 Firmware 03.00.39\\(12\\)
9.8
CVSSv3
CVE-2019-5074
An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' functionality of WAGO PFC200 Firmware version 03.01.07(13), WAGO PFC200 Firmware version 03.00.39(12) and WAGO PFC100 Firmware version 03.00.39(12). A specially cra...
Wago Pfc 200 Firmware 03.01.07\\(13\\)
Wago Pfc 100 Firmware 03.00.39\\(12\\)
9.1
CVSSv3
CVE-2019-5160
An exploitable improper host validation vulnerability exists in the Cloud Connectivity functionality of WAGO PFC200 Firmware versions 03.02.02(14), 03.01.07(13), and 03.00.39(12). A specially crafted HTTPS POST request can cause the software to connect to an unauthorized host, re...
Wago Pfc200 Firmware 03.00.39\\(12\\)
Wago Pfc200 Firmware 03.01.07\\(13\\)
Wago Pfc200 Firmware 03.02.02\\(14\\)
9.1
CVSSv3
CVE-2019-5078
An exploitable denial of service vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC200 Firmware versions 03.01.07(13) and 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets can cause a denial o...
Wago Pfc 200 Firmware 03.00.39\\(12\\)
Wago Pfc 200 Firmware 03.01.07\\(13\\)
Wago Pfc 100 Firmware 03.00.39\\(12\\)
7.5
CVSSv3
CVE-2021-21000
On WAGO PFC200 devices in different firmware versions with special crafted packets an attacker with network access to the device could cause a denial of service for the login service of the runtime.
Wago 750-823 Firmware
Wago 750-829 Firmware
Wago 750-831 Firmware
Wago 750-832 Firmware
Wago 750-852 Firmware
Wago 750-862 Firmware
Wago 750-880 Firmware
Wago 750-881 Firmware
Wago 750-882 Firmware
Wago 750-885 Firmware
Wago 750-889 Firmware
Wago 750-890 Firmware
Wago 750-891 Firmware
Wago 750-893 Firmware
Wago 750-8202 Firmware
Wago 750-8203 Firmware
Wago 750-8204 Firmware
Wago 750-8206 Firmware
Wago 750-8207 Firmware
Wago 750-8208 Firmware
Wago 750-8210 Firmware
Wago 750-8211 Firmware
7.5
CVSSv3
CVE-2019-5149
The WBM web application on firmwares before 03.02.02 and 03.01.07 on the WAGO PFC100 and PFC2000, respectively, runs on a lighttpd web server and makes use of the FastCGI module, which is intended to provide high performance for all Internet applications without the penalties of ...
Wago Pfc200 Firmware 03.00.39\\(12\\)
Wago Pfc200 Firmware 03.01.07\\(13\\)
Wago Pfc100 Firmware 03.00.39\\(12\\)
Wago Pfc100 Firmware 03.01.07\\(13\\)
7.2
CVSSv3
CVE-2019-5155
An exploitable command injection vulnerability exists in the cloud connectivity feature of WAGO PFC200. An attacker can inject operating system commands into any of the parameter values contained in the firmware update command. This affects WAGO PFC200 Firmware version 03.02.02(1...
Wago Pfc200 Firmware 03.00.39\\(12\\)
Wago Pfc200 Firmware 03.01.07\\(13\\)
Wago Pfc200 Firmware 03.02.02\\(14\\)
7.2
CVSSv3
CVE-2019-5156
An exploitable command injection vulnerability exists in the cloud connectivity functionality of WAGO PFC200 versions 03.02.02(14), 03.01.07(13), and 03.00.39(12). An attacker can inject operating system commands into the TimeoutPrepared parameter value contained in the firmware ...
Wago Pfc200 Firmware 03.00.39\\(12\\)
Wago Pfc200 Firmware 03.01.07\\(13\\)
Wago Pfc200 Firmware 03.02.02\\(14\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »