Wago 0852-1505 Firmware vulnerabilities

CVE-2021-20998 [CRITICAL] CWE-306 CVE-2021-20998: In multiple managed switches by WAGO in different versions without authorization and with specially In multiple managed switches by WAGO in different versions without authorization and with specially crafted packets it is possible to create users.

CVE-2021-20997 [HIGH] CWE-522 CVE-2021-20997: In multiple managed switches by WAGO in different versions it is possible to read out the password h In multiple managed switches by WAGO in different versions it is possible to read out the password hashes of all Web-based Management users.

CVE-2021-20995 [MEDIUM] CWE-312 CVE-2021-20995: In multiple managed switches by WAGO in different versions the webserver cookies of the web based UI In multiple managed switches by WAGO in different versions the webserver cookies of the web based UI contain user credentials.

CVE-2021-20993 [MEDIUM] CWE-200 CVE-2021-20993: In multiple managed switches by WAGO in different versions the activated directory listing provides In multiple managed switches by WAGO in different versions the activated directory listing provides an attacker with the index of the resources located inside the directory.

CVE-2021-20996 [MEDIUM] CWE-732 CVE-2021-20996: In multiple managed switches by WAGO in different versions special crafted requests can lead to cook In multiple managed switches by WAGO in different versions special crafted requests can lead to cookies being transferred to third parties.

CVE-2021-20994 [HIGH] CWE-79 CVE-2021-20994: In multiple managed switches by WAGO in different versions an attacker may trick a legitimate user t In multiple managed switches by WAGO in different versions an attacker may trick a legitimate user to click a link to inject possible malicious code into the Web-Based Management.