Wago Pfc200 G2 0750-821X Xxx-Xxx vulnerabilities

8 known vulnerabilities affecting wago/pfc200_g2_0750-821x_xxx-xxx.

Total CVEs

8

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

HIGH5MEDIUM3

Vulnerabilities

Page 1 of 1

CVE-2024-41974HIGHCVSS 7.1≥ 0.0.0, ≤ 04.04.03 (70)2024-11-18

CVE-2024-41974 [HIGH] CWE-732 CVE-2024-41974: A low privileged remote attacker may modify the BACNet service properties due to incorrect permissio A low privileged remote attacker may modify the BACNet service properties due to incorrect permission assignment for critical resources which may lead to a DoS limited to BACNet communication.

CVE-2024-41967HIGHCVSS 8.1≥ 0.0.0, ≤ 04.04.03 (70)2024-11-18

CVE-2024-41967 [HIGH] CWE-306 CVE-2024-41967: A low privileged remote attacker may modify the boot mode configuration setup of the device, leading A low privileged remote attacker may modify the boot mode configuration setup of the device, leading to modification of the firmware upgrade process or a denial-of-service attack.

CVE-2024-41971HIGHCVSS 8.1≥ 0.0.0, ≤ 04.04.03 (70)2024-11-18

CVE-2024-41971 [HIGH] CWE-22 CVE-2024-41971: A low privileged remote attacker can overwrite an arbitrary file on the filesystem leading to a DoS A low privileged remote attacker can overwrite an arbitrary file on the filesystem leading to a DoS and data loss.

CVE-2024-41969HIGHCVSS 8.8≥ 0.0.0, ≤ 04.04.03 (70)2024-11-18

CVE-2024-41969 [HIGH] CWE-306 CVE-2024-41969: A low privileged remote attacker may modify the configuration of the CODESYS V3 service through a mi A low privileged remote attacker may modify the configuration of the CODESYS V3 service through a missing authentication vulnerability which could lead to full system access and/or DoS.

CVE-2024-41973HIGHCVSS 8.1≥ 0.0.0, ≤ 04.04.03 (70)2024-11-18

CVE-2024-41973 [HIGH] CWE-35 CVE-2024-41973: A low privileged remote attacker can specify an arbitrary file on the filesystem which may lead to a A low privileged remote attacker can specify an arbitrary file on the filesystem which may lead to an arbitrary file writes with root privileges.

CVE-2024-41970MEDIUMCVSS 5.7≥ 0.0.0, ≤ 04.04.03 (70)2024-11-18

CVE-2024-41970 [MEDIUM] CWE-732 CVE-2024-41970: A low privileged remote attacker may gain access to forbidden diagnostic data due to incorrect permi A low privileged remote attacker may gain access to forbidden diagnostic data due to incorrect permission assignment for critical resources.

CVE-2024-41972MEDIUMCVSS 6.5≥ 0.0.0, ≤ 04.04.03 (70)2024-11-18

CVE-2024-41972 [MEDIUM] CWE-35 CVE-2024-41972: A low privileged remote attacker can overwrite an arbitrary file on the filesystem which may lead to A low privileged remote attacker can overwrite an arbitrary file on the filesystem which may lead to an arbitrary file read with root privileges.

CVE-2024-41968MEDIUMCVSS 5.4≥ 0.0.0, ≤ 04.04.03 (70)2024-11-18

CVE-2024-41968 [MEDIUM] CWE-306 CVE-2024-41968: A low privileged remote attacker may modify the docker settings setup of the device, leading to a li A low privileged remote attacker may modify the docker settings setup of the device, leading to a limited DoS.