CVE-2020-12506
published 2020-09-30CVE-2020-12506: Improper Authentication vulnerability in WAGO 750-8XX series with FW version <= FW03 allows an attacker to change the settings of the devices by sending…
critical9.1CVSS 3.1
AVNACLPRNUINSUCNIHAH
Improper Authentication vulnerability in WAGO 750-8XX series with FW version <= FW03 allows an attacker to change the settings of the devices by sending specifically constructed requests without authentication This issue affects: WAGO 750-362, WAGO 750-363, WAGO 750-823, WAGO 750-832/xxx-xxx, WAGO 750-862, WAGO 750-891, WAGO 750-890/xxx-xxx in versions FW03 and prior versions.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| wago | 750-362 | unspecified – FW03 | — |
| wago | 750-362_firmware | <= fw03 | — |
| wago | 750-363 | unspecified – FW03 | — |
| wago | 750-363_firmware | <= fw03 | — |
| wago | 750-823 | unspecified – FW03 | — |
| wago | 750-823_firmware | <= fw03 | — |
| wago | 750-832_firmware | <= fw03 | — |
| wago | 750-832_xxx-xxx | unspecified – FW03 | — |
| wago | 750-862 | unspecified – FW03 | — |
| wago | 750-862_firmware | <= fw03 | — |
| wago | 750-890_firmware | <= fw03 | — |
| wago | 750-890_xxx-xxx | unspecified – FW03 | — |
| wago | 750-891 | unspecified – FW03 | — |
| wago | 750-891_firmware | <= fw03 | — |