Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wago vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2019-5184
An exploitable double free vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC 200. A specially crafted XML cache file written to a specific location on the device can cause a heap pointer to be freed twice, resulting in a denial of servic...
Wago Pfc200 Firmware 03.02.02\\(14\\)
9
CVSSv2
CVE-2020-6090
An exploitable code execution vulnerability exists in the Web-Based Management (WBM) functionality of WAGO PFC 200 03.03.10(15). A specially crafted series of HTTP requests can cause code execution resulting in remote code execution. An attacker can make an authenticated HTTP req...
Wago Pfc200 Firmware 03.03.10\\(15\\)
NA
CVE-2022-3843
In WAGO Unmanaged Switch (852-111/000-001) in firmware version 01 an undocumented configuration interface without authorization allows an remote malicious user to read system information and configure a limited set of parameters.
Wago 852-111\\/000-001 Firmware 01
7.5
CVSSv2
CVE-2020-8597
eap.c in pppd in ppp 2.4.2 up to and including 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.
Point-to-point Protocol Project Point-to-point Protocol
Wago Pfc Firmware
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
6 Github repositories
6.4
CVSSv2
CVE-2022-22518
A bug in CmpUserMgr component can lead to only partially applied security policies. This can result in enabled, anonymous access to components part of the applied security policy.
Codesys Control For Beaglebone Sl
Codesys Control For Beckhoff Cx9020
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Iot2000 Sl
Codesys Control For Linux Sl
Codesys Control For Pfc100 Sl
Codesys Control For Pfc200 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control Runtime System Toolkit
NA
CVE-2023-6357
A low-privileged remote attacker could exploit the vulnerability and inject additional system commands via file system libraries which could give the attacker full control of the device.
Codesys Runtime Toolkit
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Pfc200 Sl
Codesys Control For Plcnext Sl
Codesys Control For Pfc100 Sl
Codesys Control For Linux Sl
Codesys Control For Linux Arm Sl
Codesys Control For Empc-a\\/imx6
Codesys Control For Iot2000 Sl
Codesys Control For Beaglebone Sl
NA
CVE-2021-46388
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: Reason: The issue is not a vulnerability (fails CNT2) - Has no impact on availability, integrity or confidence as only documented html templates are shown without additional data or the option to store changes. Notes
5
CVSSv2
CVE-2020-15806
CODESYS Control runtime system prior to 3.5.16.10 allows Uncontrolled Memory Allocation.
Codesys Control For Beaglebone
Codesys Control For Empc-a\\/imx6
Codesys Control For Iot2000
Codesys Control For Linux
Codesys Control For Pfc100
Codesys Control For Pfc200
Codesys Control For Plcnext
Codesys Control For Raspberry Pi
Codesys Control For Wago Touch Panels 600
Codesys Control Rte
Codesys Control Runtime System Toolkit
Codesys Control Win
Codesys Embedded Target Visu Toolkit
Codesys Hmi
Codesys Remote Target Visu Toolkit
Codesys Simulation Runtime
NA
CVE-2022-4046
In CODESYS Control in multiple versions a improper restriction of operations within the bounds of a memory buffer allow an remote attacker with user privileges to gain full access of the device.
Codesys Control For Beaglebone Sl
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Iot2000 Sl
Codesys Control For Linux Sl
Codesys Control For Pfc100 Sl
Codesys Control For Pfc200 Sl
Codesys Control For Plcnext Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control Rte Sl
Codesys Control Rte Sl \\(for Beckhoff Cx\\)
Codesys Control Runtime System Toolkit
Codesys Control Win Sl
Codesys Hmi Sl
NA
CVE-2022-47391
In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a improper input validation vulnerability to read from invalid addresses leading to a denial of service.
Codesys Hmi \\(sl\\)
Codesys Control Win \\(sl\\)
Codesys Control Runtime System Toolkit
Codesys Control Rte \\(sl\\)
Codesys Control Rte \\(for Beckhoff Cx\\) Sl
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Plcnext Sl
Codesys Control For Pfc200 Sl
Codesys Control For Pfc100 Sl
Codesys Control For Linux Sl
Codesys Control For Iot2000 Sl
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Beaglebone Sl
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »