CVE-2018-12980
published 2018-07-12CVE-2018-12980: An issue was discovered on WAGO e!DISPLAY 762-3000 through 762-3003 devices with firmware before FW 02. The vulnerability allows an authenticated user to…
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EXPLOIT
An issue was discovered on WAGO e!DISPLAY 762-3000 through 762-3003 devices with firmware before FW 02. The vulnerability allows an authenticated user to upload arbitrary files to the file system with the permissions of the web server.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| wago | 762-3000_firmware | < 02 | 02 |
| wago | 762-3001_firmware | < 02 | 02 |
| wago | 762-3002_firmware | < 02 | 02 |
| wago | 762-3003_firmware | < 02 | 02 |