← volver
CVE-2023-1620

WAGO: DoS in multiple products in multiple versions using Codesys

CVSS 4.9 MEDIUMEPSS 0.9%CWE-1288
Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high privileges to DoS the device by sending a specifically crafted packet to the CODESYS V2 runtime.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Productos afectados
Wago · 750-331Wago · 750-332Wago · 750-8202/xxx-xxxWago · 750-8203/xxx-xxxWago · 750-8204/xxx-xxxWago · 750-8206/xxx-xxxWago · 750-8207/xxx-xxxWago · 750-8208/xxx-xxxWago · 750-8210/xxx-xxxWago · 750-8211/xxx-xxxWago · 750-8212/xxx-xxxWago · 750-8213/xxx-xxxWago · 750-8214/xxx-xxxWago · 750-8216/xxx-xxxWago · 750-8217/xxx-xxxWago · 750-823Wago · 750-829Wago · 750-831/xxx-xxxWago · 750-832/xxx-xxxWago · 750-852Wago · 750-862Wago · 750-880/xxx-xxxWago · 750-881Wago · 750-882Wago · 750-885/xxx-xxxWago · 750-889Wago · 750-890/xxx-xxxWago · 750-891Wago · 750-893

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://cert.vde.com/en/advisories/VDE-2023-006/