← voltar
CVE-2026-3587

Hidden CLI Function Allows Root Access

CVSS 10 CRITICALEPSS 0.7%CWE-912
An unauthenticated remote attacker can exploit a hidden function in the CLI prompt to escape the restricted interface, leading to full compromise of the device.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Produtos afetados
WAGO · Industrial Managed Switch 852-1305WAGO · Industrial Managed Switch 852-1305-000-001WAGO · Industrial Managed Switch 852-1505WAGO · Industrial Managed Switch 852-1505-000-001WAGO · Industrial Managed Switch 852-1605WAGO · Industrial Managed Switch 852-303WAGO · Industrial Managed Switch 852-602WAGO · Industrial Managed Switch 852-603WAGO · Lean Managed Switch 852-1812WAGO · Lean Managed Switch 852-1812-010-000WAGO · Lean Managed Switch 852-1813WAGO · Lean Managed Switch 852-1813-000-001WAGO · Lean Managed Switch 852-1813-010-000WAGO · Lean Managed Switch 852-1813/010-001WAGO · Lean Managed Switch 852-1816WAGO · Lean Managed Switch 852-1816-010-000

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://certvde.com/de/advisories/VDE-2026-020