CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
76.8%
The Linux Console on the WAGO I/O System 758 model 758-870, 758-874, 758-875, and 758-876 Industrial PC (IPC) devices has a default password of wago for the (1) root and (2) admin accounts, (3) a default password of user for the user account, and (4) a default password of guest for the guest account, which makes it easier for remote attackers to obtain login access via a TELNET session, a different vulnerability than CVE-2012-3013.
Vendor | Product | Version | CPE |
---|---|---|---|
wago | wago_i\/o_system_758_industrial_pc_device | 758-870 | cpe:2.3:h:wago:wago_i\/o_system_758_industrial_pc_device:758-870:*:*:*:*:*:*:* |
wago | wago_i\/o_system_758_industrial_pc_device | 758-874 | cpe:2.3:h:wago:wago_i\/o_system_758_industrial_pc_device:758-874:*:*:*:*:*:*:* |
wago | wago_i\/o_system_758_industrial_pc_device | 758-875 | cpe:2.3:h:wago:wago_i\/o_system_758_industrial_pc_device:758-875:*:*:*:*:*:*:* |
wago | wago_i\/o_system_758_industrial_pc_device | 758-876 | cpe:2.3:h:wago:wago_i\/o_system_758_industrial_pc_device:758-876:*:*:*:*:*:*:* |