CVE-2020-12522
published 2020-12-17CVE-2020-12522: The reported vulnerability allows an attacker who has network access to the device to execute code with specially crafted packets in WAGO Series PFC 100…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
The reported vulnerability allows an attacker who has network access to the device to execute code with specially crafted packets in WAGO Series PFC 100 (750-81xx/xxx-xxx), Series PFC 200 (750-82xx/xxx-xxx), Series Wago Touch Panel 600 Standard Line (762-4xxx), Series Wago Touch Panel 600 Advanced Line (762-5xxx), Series Wago Touch Panel 600 Marine Line (762-6xxx) with firmware versions <=FW10.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| wago | pfc_100_firmware | <= 10 | — |
| wago | pfc_200_firmware | <= 10 | — |
| wago | series_pfc_100 | FW1 – FW10 | — |
| wago | series_pfc_200 | FW1 – FW10 | — |
| wago | series_wago_touch_panel_600_advanced_line | FW1 – FW10 | — |
| wago | series_wago_touch_panel_600_marine_line | FW1 – FW10 | — |
| wago | series_wago_touch_panel_600_standard_line | FW1 – FW10 | — |
| wago | touch_panel_600_advanced_firmware | <= 10 | — |
| wago | touch_panel_600_marine_firmware | <= 10 | — |
| wago | touch_panel_600_standard_firmware | <= 10 | — |