Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wago vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2015-6472
WAGO IO 750-849 01.01.27 and 01.02.05, WAGO IO 750-881, and WAGO IO 758-870 have weak credential management.
Wago 750-849 Firmware 01.02.05
Wago 750-849 Firmware 01.01.27
Wago 750-881 Firmware 01.02.05
Wago 750-881 Firmware 01.01.27
Wago 758-870 Firmware 01.01.27
Wago 758-870 Firmware 01.02.05
5
CVSSv2
CVE-2021-20993
In multiple managed switches by WAGO in different versions the activated directory listing provides an attacker with the index of the resources located inside the directory.
Wago 0852-0303 Firmware
Wago 0852-1305 Firmware
Wago 0852-1505 Firmware
Wago 0852-1305\\/000-001 Firmware
Wago 0852-1505\\/000-001 Firmware
4.3
CVSSv2
CVE-2021-20994
In multiple managed switches by WAGO in different versions an attacker may trick a legitimate user to click a link to inject possible malicious code into the Web-Based Management.
Wago 0852-0303 Firmware
Wago 0852-1305 Firmware
Wago 0852-1505 Firmware
Wago 0852-1305\\/000-001 Firmware
Wago 0852-1505\\/000-001 Firmware
5
CVSSv2
CVE-2021-20995
In multiple managed switches by WAGO in different versions the webserver cookies of the web based UI contain user credentials.
Wago 0852-0303 Firmware
Wago 0852-1305 Firmware
Wago 0852-1505 Firmware
Wago 0852-1305\\/000-001 Firmware
Wago 0852-1505\\/000-001 Firmware
7.5
CVSSv2
CVE-2021-20998
In multiple managed switches by WAGO in different versions without authorization and with specially crafted packets it is possible to create users.
Wago 0852-0303 Firmware
Wago 0852-1305 Firmware
Wago 0852-1505 Firmware
Wago 0852-1305\\/000-001 Firmware
Wago 0852-1505\\/000-001 Firmware
5
CVSSv2
CVE-2021-20996
In multiple managed switches by WAGO in different versions special crafted requests can lead to cookies being transferred to third parties.
Wago 0852-0303 Firmware
Wago 0852-1305 Firmware
Wago 0852-1505 Firmware
Wago 0852-1305\\/000-001 Firmware
Wago 0852-1505\\/000-001 Firmware
5
CVSSv2
CVE-2021-20997
In multiple managed switches by WAGO in different versions it is possible to read out the password hashes of all Web-based Management users.
Wago 0852-0303 Firmware
Wago 0852-1305 Firmware
Wago 0852-1505 Firmware
Wago 0852-1305\\/000-001 Firmware
Wago 0852-1505\\/000-001 Firmware
6.4
CVSSv2
CVE-2016-9362
An issue exists in WAGO 750-8202/PFC200 prior to FW04 (released August 2015), WAGO 750-881 prior to FW09 (released August 2016), and WAGO 0758-0874-0000-0111. By accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to edit and to view se...
Wago Pfc200 Firmware -
Wago 750-xxxx Series Firmware -
Wago 758-xxxx Series Firmware -
NA
CVE-2023-4149
A vulnerability in the web-based management allows an unauthenticated remote malicious user to inject arbitrary system commands and gain full system control. Those commands are executed with root privileges. The vulnerability is located in the user request handling of the web-bas...
Wago 0852-0602 Firmware
Wago 0852-0603 Firmware
Wago 0852-1605 Firmware
10
CVSSv2
CVE-2019-12550
WAGO 852-303 before FW06, 852-1305 before FW06, and 852-1505 before FW03 devices contain hardcoded users and passwords that can be used to login via SSH and TELNET.
Wago 852-303 Firmware
Wago 852-1305 Firmware
Wago 852-1505 Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »