Lucene search

[email protected]CVE-2019-10712

HistoryMay 07, 2019 - 10:29 p.m.

CVE-2019-10712

2019-05-0722:29:00

CWE-798

[email protected]

web.nvd.nist.gov

cve-2019-10712

web-gui

wago series 750-88x

wago series 750-87x

undocumented service access

nvd

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.4 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.054 Low

EPSS

Percentile

93.1%

JSON

The Web-GUI on WAGO Series 750-88x (750-330, 750-352, 750-829, 750-831, 750-852, 750-880, 750-881, 750-882, 750-884, 750-885, 750-889) and Series 750-87x (750-830, 750-849, 750-871, 750-872, 750-873) devices has undocumented service access.

CPENameOperatorVersion
wago:750-830_firmwarewago 750-830 firmwarelt06
wago:750-849_firmwarewago 750-849 firmwarelt08
wago:750-871_firmwarewago 750-871 firmwarelt11
wago:750-872_firmwarewago 750-872 firmwarelt07
wago:750-873_firmwarewago 750-873 firmwarelt07
wago:750-330_firmwarewago 750-330 firmwarelt14
wago:750-352_firmwarewago 750-352 firmwarelt14
wago:750-829_firmwarewago 750-829 firmwarelt14
wago:750-831_firmwarewago 750-831 firmwarelt14
wago:750-852_firmwarewago 750-852 firmwarelt14

CPE	Name	Operator	Version
wago:750-830_firmware	wago 750-830 firmware	lt	06
wago:750-849_firmware	wago 750-849 firmware	lt	08
wago:750-871_firmware	wago 750-871 firmware	lt	11
wago:750-872_firmware	wago 750-872 firmware	lt	07
wago:750-873_firmware	wago 750-873 firmware	lt	07
wago:750-330_firmware	wago 750-330 firmware	lt	14
wago:750-352_firmware	wago 750-352 firmware	lt	14
wago:750-829_firmware	wago 750-829 firmware	lt	14
wago:750-831_firmware	wago 750-831 firmware	lt	14
wago:750-852_firmware	wago 750-852 firmware	lt	14

Rows per page:

1-10 of 161

References

www.securityfocus.com/bid/108482

cert.vde.com/de-de/advisories/vde-2019-008

lists.apache.org/thread.html/r0066c1e862613de402fee04e81cbe00bcd64b64a2711beb9a13c3b25%40%3Ccommits.cassandra.apache.org%3E

lists.apache.org/thread.html/r25e25973e9577c62fd0221b4b52990851adf11cbe33036bd67d4b13d%40%3Ccommits.cassandra.apache.org%3E

lists.apache.org/thread.html/r37eb6579fa0bf94a72b6c978e2fee96f68a2b1b3ac1b1ce60aee86cf%40%3Ccommits.cassandra.apache.org%3E

lists.apache.org/thread.html/r386966780034aadee69ffd82d44555117c9339545b9ce990fe490a3e%40%3Ccommits.cassandra.apache.org%3E

lists.apache.org/thread.html/r80e8882c86c9c17a57396a5ef7c4f08878d629a0291243411be0de3a%40%3Ccommits.cassandra.apache.org%3E

lists.apache.org/thread.html/ra37700b842790883b9082e6b281fb7596f571b13078a4856cd38f2c2%40%3Ccommits.cassandra.apache.org%3E

lists.apache.org/thread.html/rb47911c179c9f3e8ea3f134b5645e63cd20c6fc63bd0b43ab5864bd1%40%3Ccommits.cassandra.apache.org%3E

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.4 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.054 Low

EPSS

Percentile

93.1%

JSON

Related for CVE-2019-10712

nessus1 ics1 prion1 cvelist1