Wago Pfc 100 Firmware vulnerabilities
9 known vulnerabilities affecting wago/pfc_100_firmware.
Total CVEs
9
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL8MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2020-12522CRITICALCVSS 9.8≤ 102020-12-17
CVE-2020-12522 [CRITICAL] CWE-78 CVE-2020-12522: The reported vulnerability allows an attacker who has network access to the device to execute code w
The reported vulnerability allows an attacker who has network access to the device to execute code with specially crafted packets in WAGO Series PFC 100 (750-81xx/xxx-xxx), Series PFC 200 (750-82xx/xxx-xxx), Series Wago Touch Panel 600 Standard Line (762-4xxx), Series Wago Touch Panel 600 Advanced Line (762-5xxx), Series Wago Touch Panel 600 Marine
nvd
CVE-2019-5075CRITICALCVSS 9.8v03.00.39\(12\)2019-12-18
CVE-2019-5075 [CRITICAL] CWE-787 CVE-2019-5075: An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdeta
An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of WAGO PFC200 Firmware versions 03.01.07(13) and 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets sent to the iocheckd service "I/O-Check" can cause a stack buffer overflow in the sub-process getcoup
nvd
CVE-2019-5081CRITICALCVSS 9.8v03.00.39\(12\)2019-12-18
CVE-2019-5081 [CRITICAL] CWE-787 CVE-2019-5081: An exploitable heap buffer overflow vulnerability exists in the iocheckd service ''I/O-Chec'' functi
An exploitable heap buffer overflow vulnerability exists in the iocheckd service ''I/O-Chec'' functionality of WAGO PFC 200 Firmware version 03.01.07(13) and 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets can cause a heap buffer overflow, potentially resulting in code execution. An attacker can send u
nvd
CVE-2019-5080CRITICALCVSS 9.1v03.00.39\(12\)2019-12-18
CVE-2019-5080 [CRITICAL] CWE-306 CVE-2019-5080: An exploitable denial-of-service vulnerability exists in the iocheckd service "I/O-Check" functional
An exploitable denial-of-service vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC 200 Firmware versions 03.01.07(13) and 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A single packet can cause a denial of service and weaken credentials resulting in the default documented credentials being applied to t
nvd
CVE-2019-5074CRITICALCVSS 9.8v03.00.39\(12\)2019-12-18
CVE-2019-5074 [CRITICAL] CWE-787 CVE-2019-5074: An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' func
An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' functionality of WAGO PFC200 Firmware version 03.01.07(13), WAGO PFC200 Firmware version 03.00.39(12) and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets can cause a stack buffer overflow, resulting in code execution. An atta
nvd
CVE-2019-5078CRITICALCVSS 9.1v03.00.39\(12\)2019-12-18
CVE-2019-5078 [CRITICAL] CWE-306 CVE-2019-5078: An exploitable denial of service vulnerability exists in the iocheckd service "I/O-Check" functional
An exploitable denial of service vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC200 Firmware versions 03.01.07(13) and 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets can cause a denial of service, resulting in the device entering an error state where it ceases all ne
nvd
CVE-2019-5079CRITICALCVSS 9.8v03.00.39\(12\)2019-12-18
CVE-2019-5079 [CRITICAL] CWE-787 CVE-2019-5079: An exploitable heap buffer overflow vulnerability exists in the iocheckd service "I/O-Check" functio
An exploitable heap buffer overflow vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC200 Firmware versions 03.01.07(13) and 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets can cause a heap buffer overflow, potentially resulting in code execution. An attacker can send un
nvd
CVE-2019-5077CRITICALCVSS 9.1v03.00.39\(12\)2019-12-18
CVE-2019-5077 [CRITICAL] CWE-306 CVE-2019-5077: An exploitable denial-of-service vulnerability exists in the iocheckd service ‘’I/O-Chec’’ functiona
An exploitable denial-of-service vulnerability exists in the iocheckd service ‘’I/O-Chec’’ functionality of WAGO PFC 200 Firmware versions 03.01.07(13) and 03.00.39(12), and WAGO PFC 100 Firmware version 03.00.39(12). A specially crafted set of packets can cause a denial of service, resulting in the device entering an error state where it ceases all
nvd
CVE-2019-5073MEDIUMCVSS 5.3v03.00.39\(12\)2019-12-18
CVE-2019-5073 [MEDIUM] CWE-200 CVE-2019-5073: An exploitable information exposure vulnerability exists in the iocheckd service "I/O-Check" functio
An exploitable information exposure vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC200 Firmware versions 03.01.07(13) and 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets can cause an external tool to fail, resulting in uninitialized stack data to be copied to the respon
nvd