← voltar
CVE-2023-5188

WAGO Improper Input Validation in IEC61850 Server / Telecontrol

CVSS 7.5 HIGHEPSS 1.0%CWE-20
The MMS Interpreter of WagoAppRTU in versions below 1.4.6.0 which is used by the WAGO Telecontrol Configurator is vulnerable to malformed packets. An remote unauthenticated attacker could send specifically crafted packets that lead to a denial-of-service condition until restart of the affected device.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Produtos afetados
WAGO · Telecontrol ConfiguratorWAGO · WagoAppRTU

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://cert.vde.com/en/advisories/VDE-2023-044/