Lucene search
K

The vulnerability of the microprogrammed software for WAGO Series PFC200 programmable logic controllers arises from incorrect restrictions on the path name in the restricted access catalog. This allows an intruder to gain unauthorized access to protected information.

🗓️ 23 Jun 2021 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec
 bdu_fstec
🔗 bdu.fstec.ru👁 5 Views

WAGO PFC200 PLC vulnerability from improper path restrictions in restricted access catalog enables remote access.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
CNNVD
WAGO 路径遍历漏洞
24 May 202100:00
cnnvd
CNVD
WAGO Path Traversal Vulnerability
9 Jun 202100:00
cnvd
CVE
CVE-2021-21001
24 May 202111:05
cve
Cvelist
CVE-2021-21001 WAGO: PFC200 Access to files outside the home directory
24 May 202111:05
cvelist
EUVD
EUVD-2021-8410
3 Oct 202520:07
euvd
NVD
CVE-2021-21001
24 May 202111:15
nvd
OSV
CVE-2021-21001
24 May 202111:15
osv
Prion
Design/Logic Flaw
24 May 202111:15
prion
Positive Technologies
PT-2021-3332 · Wago · Wago Pfc 200
24 May 202100:00
ptsecurity
Tenable Nessus
Wago PFC200 Path Traversal (CVE-2021-21001)
21 Jul 202200:00
nessus
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

23 Jun 2021 00:00Current
6.6Medium risk
Vulners AI Score6.6
CVSS 36.5
CVSS 26.8
EPSS0.01134
5