cbcvebase.
CVE-2024-41973
published 2024-11-18

CVE-2024-41973: A low privileged remote attacker can specify an arbitrary file on the filesystem which may lead to an arbitrary file writes with root privileges.

high8.1CVSS 3.1
AVNACLPRLUINSUCNIHAH
A low privileged remote attacker can specify an arbitrary file on the filesystem which may lead to an arbitrary file writes with root privileges.

Affected

12 ranges
VendorProductVersion rangeFixed in
wagocc100_0751-9x010.0.0 – 4.5.10 (FW27)
wagocc100_0751_9x010.0.0 – 04.03.03 (72)
wagoedge_controller_0752-8303_8000-00020.0.0 – 4.5.10 (FW27)
wagopfc100_g2_0750-811x-xxxx-xxxx0.0.0 – 4.5.10 (FW27)
wagopfc200_g2_0750-821x_xxx-xxx0.0.0 – 04.04.03 (70)
wagopfc200_g2_750-821x-xxx-xxx0.0.0 – 4.5.10 (FW27)
wagotp600_0762-420x_8000-000x0.0.0 – 4.5.10 (FW27)
wagotp600_0762-430x_8000-000x0.0.0 – 4.5.10 (FW27)
wagotp600_0762-520x_8000-000x0.0.0 – 4.5.10 (FW27)
wagotp600_0762-530x_8000-000x0.0.0 – 4.5.10 (FW27)
wagotp600_0762-620x_8000-000x0.0.0 – 4.5.10 (FW27)
wagotp600_0762-630x_8000-000x0.0.0 – 4.5.10 (FW27)