← volver
CVE-2026-3587

Hidden CLI Function Allows Root Access

CVSS 10 CRITICALEPSS 0.7%CWE-912
An unauthenticated remote attacker can exploit a hidden function in the CLI prompt to escape the restricted interface, leading to full compromise of the device.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Productos afectados
WAGO · Industrial Managed Switch 852-1305WAGO · Industrial Managed Switch 852-1305-000-001WAGO · Industrial Managed Switch 852-1505WAGO · Industrial Managed Switch 852-1505-000-001WAGO · Industrial Managed Switch 852-1605WAGO · Industrial Managed Switch 852-303WAGO · Industrial Managed Switch 852-602WAGO · Industrial Managed Switch 852-603WAGO · Lean Managed Switch 852-1812WAGO · Lean Managed Switch 852-1812-010-000WAGO · Lean Managed Switch 852-1813WAGO · Lean Managed Switch 852-1813-000-001WAGO · Lean Managed Switch 852-1813-010-000WAGO · Lean Managed Switch 852-1813/010-001WAGO · Lean Managed Switch 852-1816WAGO · Lean Managed Switch 852-1816-010-000

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://certvde.com/de/advisories/VDE-2026-020