CVE-2021-20996: In multiple managed switches by WAGO in different versions special crafted requests can lead to cookies being transferred to third parties.

medium5.3CVSS 3.1

AVNACLPRNUINSUCLINAN

In multiple managed switches by WAGO in different versions special crafted requests can lead to cookies being transferred to third parties.

10 ranges

Vendor	Product	Version range	Fixed in
wago	0852-0303	unspecified – V1.2.3.S0	—
wago	0852-0303_firmware	<= 1.2.3.s0	—
wago	0852-1305	unspecified – V1.1.7.S0	—
wago	0852-1305_000-001	unspecified – V1.0.4.S0	—
wago	0852-1305_000-001_firmware	<= 1.0.4.s0	—
wago	0852-1305_firmware	<= 1.1.7.s0	—
wago	0852-1505	unspecified – V1.1.6.S0	—
wago	0852-1505_000-001	unspecified – V1.0.4.S0	—
wago	0852-1505_000-001_firmware	<= 1.0.4.s0	—
wago	0852-1505_firmware	<= 1.1.6.s0	—