EUVD-2023-44046

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Wago web management vulnerability allows local users to change non-admin passwords and escalate privileges

Reporter	Title	Published	Views	Family All 9
CNNVD	WAGO PFC100 Security Vulnerability	20 Nov 202300:00	–	cnnvd
CVE	CVE-2023-3379	20 Nov 202307:23	–	cve
Cvelist	CVE-2023-3379 WAGO: Improper Privilege Management in web-based management	20 Nov 202307:23	–	cvelist
NVD	CVE-2023-3379	20 Nov 202308:15	–	nvd
OSV	CVE-2023-3379	20 Nov 202308:15	–	osv
Prion	Code injection	20 Nov 202308:15	–	prion
Positive Technologies	PT-2023-7175 · Wago · Wago Touch Panel 600 +2	20 Nov 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-3379	23 May 202506:06	–	redhatcve
Tenable Nessus	Wago Multiple Products Improper Privilege Management (CVE-2023-3379)	14 Feb 202400:00	–	nessus

[
  {
    "enisaIdVendor": [
      {
        "id": "2b6b7d92-40e4-3652-b4e9-93a6163a9a03",
        "vendor": {
          "name": "WAGO"
        }
      },
      {
        "id": "f99272e7-dd2e-306c-ba59-b85b0e7cbd4e",
        "vendor": {
          "name": "WAGO"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "148a3d48-75a5-3f9b-8d0f-75a847260d46",
        "product": {
          "name": "PFC100 (750-810x/xxx-xxx)"
        },
        "product_version": "0 ≤FW22 Patch 1"
      },
      {
        "id": "2311d500-607b-3c65-8a49-ad3feff81c9d",
        "product": {
          "name": "Touch Panel 600 Standard Line (762-4xxx)"
        },
        "product_version": "0 ≤FW25"
      },
      {
        "id": "3f6e8827-b46e-39bc-948e-4c19fd63fc00",
        "product": {
          "name": "Touch Panel 600 Advanced Line (762-5xxx)"
        },
        "product_version": "0 ≤FW25"
      },
      {
        "id": "4f26a38e-6ada-379d-bae7-58c3f3388f96",
        "product": {
          "name": "PFC200 (750-821x/xxx-xxx)"
        },
        "product_version": "0 ≤FW22 Patch 1"
      },
      {
        "id": "9de3040a-0e30-3573-ba15-a7cedeb79d80",
        "product": {
          "name": "PFC200 (750-820x/xxx-xxx)"
        },
        "product_version": "0 ≤FW25"
      },
      {
        "id": "be0d83b6-2e13-3df1-a13d-fde1fad630d4",
        "product": {
          "name": "Compact Controller 100 (751-9301)"
        },
        "product_version": "0 ≤FW25"
      },
      {
        "id": "d18557ab-e292-3255-b9bb-d76c6a27f7a2",
        "product": {
          "name": "Edge Controller (752-8303/8000-002)"
        },
        "product_version": "0 ≤FW25"
      },
      {
        "id": "fd57b3c2-d631-3623-9d32-77269e14819c",
        "product": {
          "name": "Touch Panel 600 Marine Line (762-6xxx)"
        },
        "product_version": "0 ≤FW25"
      }
    ]
  }
]

Source	Link
cert	www.cert.vde.com/en/advisories/VDE-2023-015/

03 Oct 2025 20:07Current

5.7Medium risk

Vulners AI Score5.7

CVSS 3.15.3

EPSS0.00026