CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The WBM web application on firmwares prior to 03.02.02 and 03.01.07 on the WAGO PFC100 and PFC2000, respectively, runs on a lighttpd web server and makes use of the FastCGI module, which is intended to provide high performance for all Internet applications without the penalties of Web server APIs...

7.5CVSS6.7AI score0.00433EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:30 a.m.•5 views

CVE-2019-5079

An exploitable heap buffer overflow vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC200 Firmware versions 03.01.0713 and 03.00.3912, and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a heap buffer overflow, potentially...

9.8CVSS7.8AI score0.01075EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 8:41 a.m.•6 views

CVE-2019-5135

An exploitable timing discrepancy vulnerability exists in the authentication functionality of the Web-Based Management WBM web application on WAGO PFC100/200 controllers. The WBM application makes use of the PHP crypt function which can be exploited to disclose hashed user credentials. This affec...

5.3CVSS7AI score0.00164EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 8:40 a.m.•3 views

CVE-2019-5134

An exploitable regular expression without anchors vulnerability exists in the Web-Based Management WBM authentication functionality of WAGO PFC200 versions 03.00.3912 and 03.01.0713, and WAGO PFC100 version 03.00.3912. A specially crafted authentication request can bypass regular expression...

7.5CVSS6.8AI score0.00386EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 7:48 a.m.•2 views

CVE-2019-5075

An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of WAGO PFC200 Firmware versions 03.01.0713 and 03.00.3912, and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets sent to the iocheckd service "I/O-Check" can cause a...

10CVSS7.8AI score0.00956EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 5:10 a.m.•5 views

CVE-2019-5082

An exploitable heap buffer overflow vulnerability exists in the iocheckd service I/O-Check functionality of WAGO PFC200 Firmware version 03.01.0713, WAGO PFC200 Firmware version 03.00.3912, and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a heap buffer...

9.8CVSS7.8AI score0.02711EPSS

Exploits1References1

CNNVD•added 2024/11/18 12:0 a.m.•2 views

WAGO多款产品访问控制错误漏洞

WAGO PFC100 and others are products of WAGO, a German company.WAGO PFC100 is a programmable logic controller PLC.WAGO CC100 0751-9x01 is a compact controller.WAGO Edge Controller 0752-8303/8000-0002 is a controller. An access control error vulnerability exists in various WAGO products. The...

8.1CVSS6.7AI score0.01321EPSS

Exploits0References2

CNNVD•added 2024/11/18 12:0 a.m.•0 views

WAGO多款产品安全漏洞

WAGO PFC100 and others are products of WAGO, Germany.WAGO PFC100 is a programmable logic controller PLC.WAGO CC100 0751-9x01 is a compact controller.WAGO Edge Controller 0752-8303/8000-0002 is a controller. A security vulnerability exists in various WAGO products. The vulnerability stems from the...

7.1CVSS6.8AI score0.01731EPSS

Exploits0References2

CNNVD•added 2024/11/18 12:0 a.m.•1 views

WAGO多款产品安全漏洞

WAGO PFC100 and others are products of WAGO, Germany.WAGO PFC100 is a programmable logic controller PLC.WAGO CC100 0751-9x01 is a compact controller.WAGO Edge Controller 0752-8303/8000-0002 is a controller. A security vulnerability exists in a number of WAGO products. The vulnerability stems from...

5.7CVSS6.8AI score0.00232EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by