Lucene search
TalosCVELIST:CVE-2019-5155HistoryMar 10, 2020 - 9:59 p.m.
CVE-2019-5155
2020-03-1021:59:24
talos
www.cve.org
8
EPSS
0.003
Percentile
71.4%
An exploitable command injection vulnerability exists in the cloud connectivity feature of WAGO PFC200. An attacker can inject operating system commands into any of the parameter values contained in the firmware update command. This affects WAGO PFC200 Firmware version 03.02.02(14), version 03.01.07(13), and version 03.00.39(12)
CNA Affected
[
{
"product": "WAGO PFC200 Firmware",
"vendor": "Wago",
"versions": [
{
"status": "affected",
"version": "version 03.02.02(14)"
},
{
"status": "affected",
"version": "version 03.01.07(13)"
},
{
"status": "affected",
"version": "version 03.00.39(12)"
}
]
}
]Related
cve
cve
CVE-2019-5155
2020-03-11 22:27:40
nvd
nvd
CVE-2019-5155
2020-03-11 22:27:40
talos
talos
WAGO PFC200 Cloud Connectivity Multiple Command Injection Vulnerabilities
2020-03-09 00:00:00
prion
prion
Command injection
2020-03-11 22:27:00
nessus
nessus
Wago PFC200 Cloud Connectivity Multiple Command Injection (CVE-2019-5155)
2023-02-14 00:00:00