Lucene search

K
cvelistTalosCVELIST:CVE-2019-5082
HistoryJan 08, 2020 - 4:19 p.m.

CVE-2019-5082

2020-01-0816:19:20
talos
www.cve.org

9.8 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.5%

An exploitable heap buffer overflow vulnerability exists in the iocheckd service I/O-Check functionality of WAGO PFC200 Firmware version 03.01.07(13), WAGO PFC200 Firmware version 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets can cause a heap buffer overflow, potentially resulting in code execution. An attacker can send unauthenticated packets to trigger this vulnerability.

CNA Affected

[
  {
    "product": "WAGO PFC200",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Firmware version 03.01.07(13)"
      },
      {
        "status": "affected",
        "version": "Firmware version 03.00.39(12)"
      }
    ]
  },
  {
    "product": "WAGO PFC100",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Firmware version 03.00.39(12)"
      }
    ]
  }
]

9.8 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.5%

Related for CVELIST:CVE-2019-5082