CVE-2024-41970
published 2024-11-18CVE-2024-41970: A low privileged remote attacker may gain access to forbidden diagnostic data due to incorrect permission assignment for critical resources.
medium5.7CVSS 3.1
AVNACLPRLUIRSUCHINAN
A low privileged remote attacker may gain access to forbidden diagnostic data due to incorrect permission assignment for critical resources.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| wago | cc100_0751-9x01 | 0.0.0 – 4.5.10 (FW27) | — |
| wago | cc100_0751_9x01 | 0.0.0 – 04.03.03 (72) | — |
| wago | edge_controller_0752-8303_8000-0002 | 0.0.0 – 4.5.10 (FW27) | — |
| wago | pfc100_g2_0750-811x-xxxx-xxxx | 0.0.0 – 4.5.10 (FW27) | — |
| wago | pfc200_g2_0750-821x_xxx-xxx | 0.0.0 – 04.04.03 (70) | — |
| wago | pfc200_g2_750-821x-xxx-xxx | 0.0.0 – 4.5.10 (FW27) | — |
| wago | tp600_0762-420x_8000-000x | 0.0.0 – 4.5.10 (FW27) | — |
| wago | tp600_0762-430x_8000-000x | 0.0.0 – 4.5.10 (FW27) | — |
| wago | tp600_0762-520x_8000-000x | 0.0.0 – 4.5.10 (FW27) | — |
| wago | tp600_0762-530x_8000-000x | 0.0.0 – 4.5.10 (FW27) | — |
| wago | tp600_0762-620x_8000-000x | 0.0.0 – 4.5.10 (FW27) | — |
| wago | tp600_0762-630x_8000-000x | 0.0.0 – 4.5.10 (FW27) | — |