Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wago vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2012-4879
The Linux Console on the WAGO I/O System 758 model 758-870, 758-874, 758-875, and 758-876 Industrial PC (IPC) devices has a default password of wago for the (1) root and (2) admin accounts, (3) a default password of user for the user account, and (4) a default password of guest f...
Wago Wago I/o System 758 Industrial Pc Device 758-876
Wago Wago I/o System 758 Industrial Pc Device 758-875
Wago Wago I/o System 758 Industrial Pc Device 758-870
Wago Wago I/o System 758 Industrial Pc Device 758-874
10
CVSSv2
CVE-2012-3013
WAGO I/O System 758 model 758-870, 758-874, 758-875, and 758-876 Industrial PC (IPC) devices have default passwords for unspecified Web Based Management accounts, which makes it easier for remote malicious users to obtain administrative access via a TCP session.
Wago Wago I/o System 758 Industrial Pc Device 758-876
Wago Wago I/o System 758 Industrial Pc Device 758-875
Wago Wago I/o System 758 Industrial Pc Device 758-870
Wago Wago I/o System 758 Industrial Pc Device 758-874
5
CVSSv2
CVE-2021-20993
In multiple managed switches by WAGO in different versions the activated directory listing provides an attacker with the index of the resources located inside the directory.
Wago 0852-0303 Firmware
Wago 0852-1305 Firmware
Wago 0852-1505 Firmware
Wago 0852-1305/000-001 Firmware
Wago 0852-1505/000-001 Firmware
4.3
CVSSv2
CVE-2021-20994
In multiple managed switches by WAGO in different versions an attacker may trick a legitimate user to click a link to inject possible malicious code into the Web-Based Management.
Wago 0852-0303 Firmware
Wago 0852-1305 Firmware
Wago 0852-1505 Firmware
Wago 0852-1305/000-001 Firmware
Wago 0852-1505/000-001 Firmware
5
CVSSv2
CVE-2021-20996
In multiple managed switches by WAGO in different versions special crafted requests can lead to cookies being transferred to third parties.
Wago 0852-0303 Firmware
Wago 0852-1305 Firmware
Wago 0852-1505 Firmware
Wago 0852-1305/000-001 Firmware
Wago 0852-1505/000-001 Firmware
7.5
CVSSv2
CVE-2021-20998
In multiple managed switches by WAGO in different versions without authorization and with specially crafted packets it is possible to create users.
Wago 0852-0303 Firmware
Wago 0852-1305 Firmware
Wago 0852-1505 Firmware
Wago 0852-1305/000-001 Firmware
Wago 0852-1505/000-001 Firmware
5
CVSSv2
CVE-2021-20995
In multiple managed switches by WAGO in different versions the webserver cookies of the web based UI contain user credentials.
Wago 0852-0303 Firmware
Wago 0852-1305 Firmware
Wago 0852-1505 Firmware
Wago 0852-1305/000-001 Firmware
Wago 0852-1505/000-001 Firmware
5
CVSSv2
CVE-2021-20997
In multiple managed switches by WAGO in different versions it is possible to read out the password hashes of all Web-based Management users.
Wago 0852-0303 Firmware
Wago 0852-1305 Firmware
Wago 0852-1505 Firmware
Wago 0852-1305/000-001 Firmware
Wago 0852-1505/000-001 Firmware
10
CVSSv2
CVE-2020-12522
The reported vulnerability allows an attacker who has network access to the device to execute code with specially crafted packets in WAGO Series PFC 100 (750-81xx/xxx-xxx), Series PFC 200 (750-82xx/xxx-xxx), Series Wago Touch Panel 600 Standard Line (762-4xxx), Series Wago Touch ...
Wago Pfc 100 Firmware
Wago Pfc 200 Firmware
Wago Touch Panel 600 Standard Firmware
Wago Touch Panel 600 Advanced Firmware
Wago Touch Panel 600 Marine Firmware
NA
CVE-2023-4149
A vulnerability in the web-based management allows an unauthenticated remote malicious user to inject arbitrary system commands and gain full system control. Those commands are executed with root privileges. The vulnerability is located in the user request handling of the web-bas...
Wago 0852-0602 Firmware
Wago 0852-0603 Firmware
Wago 0852-1605 Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »