Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wago vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-12550
WAGO 852-303 before FW06, 852-1305 before FW06, and 852-1505 before FW03 devices contain hardcoded users and passwords that can be used to login via SSH and TELNET.
Wago 852-303 Firmware
Wago 852-1305 Firmware
Wago 852-1505 Firmware
7.5
CVSSv3
CVE-2019-5149
The WBM web application on firmwares before 03.02.02 and 03.01.07 on the WAGO PFC100 and PFC2000, respectively, runs on a lighttpd web server and makes use of the FastCGI module, which is intended to provide high performance for all Internet applications without the penalties of ...
Wago Pfc200 Firmware 03.00.39\\(12\\)
Wago Pfc200 Firmware 03.01.07\\(13\\)
Wago Pfc100 Firmware 03.00.39\\(12\\)
Wago Pfc100 Firmware 03.01.07\\(13\\)
NA
CVE-2012-3013
WAGO I/O System 758 model 758-870, 758-874, 758-875, and 758-876 Industrial PC (IPC) devices have default passwords for unspecified Web Based Management accounts, which makes it easier for remote malicious users to obtain administrative access via a TCP session.
Wago Wago I\\/o System 758 Industrial Pc Device 758-876
Wago Wago I\\/o System 758 Industrial Pc Device 758-874
Wago Wago I\\/o System 758 Industrial Pc Device 758-875
Wago Wago I\\/o System 758 Industrial Pc Device 758-870
NA
CVE-2012-4879
The Linux Console on the WAGO I/O System 758 model 758-870, 758-874, 758-875, and 758-876 Industrial PC (IPC) devices has a default password of wago for the (1) root and (2) admin accounts, (3) a default password of user for the user account, and (4) a default password of guest f...
Wago Wago I\\/o System 758 Industrial Pc Device 758-870
Wago Wago I\\/o System 758 Industrial Pc Device 758-875
Wago Wago I\\/o System 758 Industrial Pc Device 758-876
Wago Wago I\\/o System 758 Industrial Pc Device 758-874
5.3
CVSSv3
CVE-2019-5073
An exploitable information exposure vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC200 Firmware versions 03.01.07(13) and 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets can cause an exte...
Wago Pfc 200 Firmware 03.00.39\\(12\\)
Wago Pfc 200 Firmware 03.01.07\\(13\\)
Wago Pfc 100 Firmware 03.00.39\\(12\\)
9.8
CVSSv3
CVE-2019-5075
An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of WAGO PFC200 Firmware versions 03.01.07(13) and 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets sent to the iocheckd service &...
Wago Pfc 200 Firmware 03.00.39\\(12\\)
Wago Pfc 200 Firmware 03.01.07\\(13\\)
Wago Pfc 100 Firmware 03.00.39\\(12\\)
9.1
CVSSv3
CVE-2019-5077
An exploitable denial-of-service vulnerability exists in the iocheckd service ‘’I/O-Chec’’ functionality of WAGO PFC 200 Firmware versions 03.01.07(13) and 03.00.39(12), and WAGO PFC 100 Firmware version 03.00.39(12). A specially crafted set of packets can...
Wago Pfc 200 Firmware 03.00.39\\(12\\)
Wago Pfc 200 Firmware 03.01.07\\(13\\)
Wago Pfc 100 Firmware 03.00.39\\(12\\)
9.1
CVSSv3
CVE-2019-5080
An exploitable denial-of-service vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC 200 Firmware versions 03.01.07(13) and 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A single packet can cause a denial of service and weak...
Wago Pfc 200 Firmware 03.00.39\\(12\\)
Wago Pfc 200 Firmware 03.01.07\\(13\\)
Wago Pfc 100 Firmware 03.00.39\\(12\\)
9.8
CVSSv3
CVE-2019-5081
An exploitable heap buffer overflow vulnerability exists in the iocheckd service ''I/O-Chec'' functionality of WAGO PFC 200 Firmware version 03.01.07(13) and 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets can ca...
Wago Pfc 200 Firmware 03.00.39\\(12\\)
Wago Pfc 200 Firmware 03.01.07\\(13\\)
Wago Pfc 100 Firmware 03.00.39\\(12\\)
5.3
CVSSv3
CVE-2019-5135
An exploitable timing discrepancy vulnerability exists in the authentication functionality of the Web-Based Management (WBM) web application on WAGO PFC100/200 controllers. The WBM application makes use of the PHP crypt() function which can be exploited to disclose hashed user cr...
Wago Pfc200 Firmware 03.00.39\\(12\\)
Wago Pfc200 Firmware 03.01.07\\(13\\)
Wago Pfc100 Firmware 03.00.39\\(12\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »