Wago 750-890 025-001 Firmware vulnerabilities
4 known vulnerabilities affecting wago/750-890_025-001_firmware.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2023-1150HIGHCVSS 7.5fixed in fw112023-06-26
CVE-2023-1150 [HIGH] CWE-772 CVE-2023-1150: Uncontrolled resource consumption in Series WAGO 750-3x/-8x products may allow an unauthenticated re
Uncontrolled resource consumption in Series WAGO 750-3x/-8x products may allow an unauthenticated remote attacker to DoS the MODBUS server with specially crafted packets.
nvd
CVE-2023-1619MEDIUMCVSS 4.9fixed in fw112023-06-26
CVE-2023-1619 [MEDIUM] CWE-1288 CVE-2023-1619: Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high priv
Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high privileges to DoS the device by sending a malformed packet.
nvd
CVE-2023-1620MEDIUMCVSS 4.9fixed in fw112023-06-26
CVE-2023-1620 [MEDIUM] CWE-1288 CVE-2023-1620: Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high priv
Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high privileges to DoS the device by sending a specifically crafted packet to the CODESYS V2 runtime.
nvd
CVE-2021-34578HIGHCVSS 8.1≤ fw072021-08-31
CVE-2021-34578 [HIGH] CWE-287 CVE-2021-34578: This vulnerability allows an attacker who has access to the WBM to read and write settings-parameter
This vulnerability allows an attacker who has access to the WBM to read and write settings-parameters of the device by sending specifically constructed requests without authentication on multiple WAGO PLCs in firmware versions up to FW07.
nvd