Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wago vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2019-5181
An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.02(14). A specially crafted XML cache file written to a specific location on the device can cause a stack b...
Wago Pfc200 Firmware 03.02.02\\(14\\)
4.4
CVSSv2
CVE-2019-5186
An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC 200. An attacker can send a specially crafted packet to trigger the parsing of this cache file.At 0x1eb9c the extracted interface elemen...
Wago Pfc200 Firmware 03.02.02\\(14\\)
NA
CVE-2022-3843
In WAGO Unmanaged Switch (852-111/000-001) in firmware version 01 an undocumented configuration interface without authorization allows an remote malicious user to read system information and configure a limited set of parameters.
Wago 852-111\\/000-001 Firmware 01
7.5
CVSSv2
CVE-2020-8597
eap.c in pppd in ppp 2.4.2 up to and including 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.
Point-to-point Protocol Project Point-to-point Protocol
Wago Pfc Firmware
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
6 Github repositories
NA
CVE-2023-6357
A low-privileged remote attacker could exploit the vulnerability and inject additional system commands via file system libraries which could give the attacker full control of the device.
Codesys Runtime Toolkit
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Pfc200 Sl
Codesys Control For Plcnext Sl
Codesys Control For Pfc100 Sl
Codesys Control For Linux Sl
Codesys Control For Linux Arm Sl
Codesys Control For Empc-a\\/imx6
Codesys Control For Iot2000 Sl
Codesys Control For Beaglebone Sl
6.4
CVSSv2
CVE-2022-22518
A bug in CmpUserMgr component can lead to only partially applied security policies. This can result in enabled, anonymous access to components part of the applied security policy.
Codesys Control For Beaglebone Sl
Codesys Control For Beckhoff Cx9020
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Iot2000 Sl
Codesys Control For Linux Sl
Codesys Control For Pfc100 Sl
Codesys Control For Pfc200 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control Runtime System Toolkit
NA
CVE-2021-46388
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: Reason: The issue is not a vulnerability (fails CNT2) - Has no impact on availability, integrity or confidence as only documented html templates are shown without additional data or the option to store changes. Notes
5
CVSSv2
CVE-2020-15806
CODESYS Control runtime system prior to 3.5.16.10 allows Uncontrolled Memory Allocation.
Codesys Control For Beaglebone
Codesys Control For Empc-a\\/imx6
Codesys Control For Iot2000
Codesys Control For Linux
Codesys Control For Pfc100
Codesys Control For Pfc200
Codesys Control For Plcnext
Codesys Control For Raspberry Pi
Codesys Control For Wago Touch Panels 600
Codesys Control Rte
Codesys Control Runtime System Toolkit
Codesys Control Win
Codesys Embedded Target Visu Toolkit
Codesys Hmi
Codesys Remote Target Visu Toolkit
Codesys Simulation Runtime
NA
CVE-2022-47391
In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a improper input validation vulnerability to read from invalid addresses leading to a denial of service.
Codesys Hmi \\(sl\\)
Codesys Control Win \\(sl\\)
Codesys Control Runtime System Toolkit
Codesys Control Rte \\(sl\\)
Codesys Control Rte \\(for Beckhoff Cx\\) Sl
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Plcnext Sl
Codesys Control For Pfc200 Sl
Codesys Control For Pfc100 Sl
Codesys Control For Linux Sl
Codesys Control For Iot2000 Sl
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Beaglebone Sl
1 Article
NA
CVE-2022-4046
In CODESYS Control in multiple versions a improper restriction of operations within the bounds of a memory buffer allow an remote attacker with user privileges to gain full access of the device.
Codesys Control For Beaglebone Sl
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Iot2000 Sl
Codesys Control For Linux Sl
Codesys Control For Pfc100 Sl
Codesys Control For Pfc200 Sl
Codesys Control For Plcnext Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control Rte Sl
Codesys Control Rte Sl \\(for Beckhoff Cx\\)
Codesys Control Runtime System Toolkit
Codesys Control Win Sl
Codesys Hmi Sl
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »