cbcvebase.
CVE-2022-22511
published 2022-03-09

CVE-2022-22511: Various configuration pages of the device are vulnerable to reflected XSS (Cross-Site Scripting) attacks. An authorized attacker with user privileges may use…

medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
Various configuration pages of the device are vulnerable to reflected XSS (Cross-Site Scripting) attacks. An authorized attacker with user privileges may use this to gain access to confidential information on a PC that connects to the WBM after it has been compromised.

Affected

32 ranges· showing 25
VendorProductVersion rangeFixed in
wago750-8100_firmware>= fw16 < fw22fw22
wago750-8101_025-000_firmware>= fw16 < fw22fw22
wago750-8101_firmware>= fw16 < fw22fw22
wago750-8102_025-000_firmware>= fw16 < fw22fw22
wago750-8102_firmware>= fw16 < fw22fw22
wago750-8202_000-012_firmware>= fw16 < fw22fw22
wago750-8202_000-022_firmware>= fw16 < fw22fw22
wago750-8202_025-000_firmware>= fw16 < fw22fw22
wago750-8202_025-001_firmware>= fw16 < fw22fw22
wago750-8202_firmware>= fw16 < fw22fw22
wago750-82_firmware>= fw16 < fw22fw22
wago751-9301_firmware>= fw16 < fw22fw22
wago752-8303_8000-002_firmware>= fw16 < fw22fw22
wago762-4205_8000-002_firmware>= fw16 < fw22fw22
wago762-4206_8000-002_firmware>= fw16 < fw22fw22
wago762-4305_8000-002_firmware>= fw16 < fw22fw22
wago762-4306_8000-002_firmware>= fw16 < fw22fw22
wago762-5205_8000-001_firmware>= fw16 < fw22fw22
wago762-5206_8000-001_firmware>= fw16 < fw22fw22
wago762-5305_8000-002_firmware>= fw16 < fw22fw22
wago762-5306_8000-002_firmware>= fw16 < fw22fw22
wago762-6301_8000-002_firmware>= fw16 < fw22fw22
wago762-6302_8000-002_firmware>= fw16 < fw22fw22
wago762-6303_8000-002_firmware>= fw16 < fw22fw22
wago762-6304_8000-002_firmware>= fw16 < fw22fw22