Lucene search

[email protected]CVE-2018-12980

HistoryJul 12, 2018 - 6:29 p.m.

CVE-2018-12980

2018-07-1218:29:00

CWE-434

[email protected]

web.nvd.nist.gov

wago

e!display

firmware

vulnerability

file upload

web server permissions

cve-2018-12980

nvd

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.6 High

AI Score

Confidence

High

0.016 Low

EPSS

Percentile

87.6%

JSON

An issue was discovered on WAGO e!DISPLAY 762-3000 through 762-3003 devices with firmware before FW 02. The vulnerability allows an authenticated user to upload arbitrary files to the file system with the permissions of the web server.

Affected configurations

NVD

Node

wago762-3000_firmwareRange<02

AND

wago762-3000Match-

Node

wago762-3001_firmwareRange<02

AND

wago762-3001Match-

Node

wago762-3002_firmwareRange<02

AND

wago762-3002Match-

Node

wago762-3003_firmwareRange<02

AND

wago762-3003Match-

CPENameOperatorVersion
wago:762-3000_firmwarewago 762-3000 firmwarelt02

CPE	Name	Operator	Version
wago:762-3000_firmware	wago 762-3000 firmware	lt	02

References

seclists.org/fulldisclosure/2018/Jul/38

cert.vde.com/en-us/advisories/vde-2018-010

ics-cert.us-cert.gov/advisories/ICSA-18-198-02

www.exploit-db.com/exploits/45014/

www.sec-consult.com/en/blog/advisories/remote-code-execution-via-multiple-attack-vectors-in-wago-edisplay/

www.wago.com/medias/SA-WBM-2018-004.pdf?context=bWFzdGVyfHJvb3R8MjgyNzYwfGFwcGxpY2F0aW9uL3BkZnxoMWUvaDg4LzkzNjE3NTIxOTUxMDIucGRmfDU1NmJkYjEzNDY0ZGU4OWQ1OTMyMjUwNTlmZTI0MzgwNDQ1MDY1YzU3OWRmZDk1NzYzODAwMDI3ODg1NDJlZjU