CVE-2024-1490

An authenticated remote attacker with high privileges can exploit the OpenVPN configuration via the web-based management interface of a WAGO PLC. If user-defined scripts are permitted, OpenVPN may allow the execution of arbitrary shell commands enabling the attacker to run arbitrary commands on t...

CVE-2024-1490 Wago: Vulnerability in WBM through Open VPN

An authenticated remote attacker with high privileges can exploit the OpenVPN configuration via the web-based management interface of a WAGO PLC. If user-defined scripts are permitted, OpenVPN may allow the execution of arbitrary shell commands enabling the attacker to run arbitrary commands on t...

PT-2026-31605

Name of the Vulnerable Software and Affected Versions WAGO PLC versions affected versions not specified Description An authenticated remote attacker with high privileges can exploit the OpenVPN configuration via the web-based management interface of a WAGO PLC. If user-defined scripts are...

EUVD-2020-4818

Malware in sbrugna...

Wago PLC Cycle Time Influences Uncontrolled Resource Consumption (CVE-2019-10953)

ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple versions. Researchers have found some controllers are susceptible to a denial-of-service attack due to a flood of network packets. This plugin only works with Tenable.ot. Please visit...

WAGO 安全漏洞

WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is designed for use in industrial environments as an electronic system for the operation of digital algorithms. A security vulnerability exists in the WAGO I/O-Check Service that originates from an unauthenticat...

WAGO Series 750-88x and 750-352 Uncontrolled Resource Consumption (CVE-2020-12516)

Older firmware versions FW1 up to FW10 of the WAGO PLC family 750-88x and 750-352 are vulnerable for a special denial of service attack. - Older firmware versions FW1 up to FW10 of the WAGO PLC family 750-88x and 750-352 are vulnerable for a special denial of service attack. CVE-2020-12516 This...

WAGO 750-8xxx PLC Denial Of Service / User Enumeration Vulnerability

WAGO 750-8xxx PLC versions prior to Firmware 20 Patch 1 v03.08.08 suffer from denial of service and user enumeration vulnerabilities. ======================================================================= title: Denial of service & User Enumeration product: WAGO 750-8xxx PLC vulnerable version:...

Several New Critical Flaws Affect CODESYS Industrial Automation Software

Cybersecurity researchers on Wednesday disclosed multiple security vulnerabilities impacting CODESYS automation software and the WAGO programmable logic controller PLC platform that could be remotely exploited to take control of a company's cloud operational technology OT infrastructure. The flaw...

CVE-2020-12516

Older firmware versions FW1 up to FW10 of the WAGO PLC family 750-88x and 750-352 are vulnerable for a special denial of service attack...

CVE-2020-12516

Older firmware versions FW1 up to FW10 of the WAGO PLC family 750-88x and 750-352 are vulnerable for a special denial of service attack...

CVE-2020-12516

Summary of CVE-2020-12516 (WAGO PLC 750-88x and 750-352) Older firmware versions FW1–FW10 are vulnerable to an Uncontrolled Resource Consumption (DoS) issue. The vulnerability can be triggered by sending a series of maliciously crafted packets to HTTP(S) ports (80/443), potentially crashing the d...

PT-2020-13150 · Wago · Wago Plc Family 750-352 +1

Name of the Vulnerable Software and Affected Versions: WAGO PLC family 750-88x versions FW1 through FW10 WAGO PLC family 750-352 versions FW1 through FW10 Description: The issue is related to a denial of service attack. Older firmware versions of the WAGO PLC family are affected. Recommendations:...

Unspecified Vulnerability in WAGO PFC100 and WAGO PFC 200 (CNVD-2020-17497)

The WAGO PFC 200 and WAGO PFC 100 are both programmable logic controllers PLCs from WAGO Germany. A security vulnerability exists in the Web-Based Management web application in the WAGO PFC 200 with firmware versions 03.00.3912 and 03.01.0713 and the PFC100 with firmware version 03.00.3912. The...

WAGO PLC Detection (OPC UA)

OPC UA based detection of WAGO PLC Controllers. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

WAGO PLC Detection (EtherNet/IP)

This script performs EtherNet/IP based detection of WAGO PLC Controllers. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

WAGO PLC Detection Consolidation

Consolidation of WAGO PLC Controller detections. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

WAGO PLC Detection (HTTP)

HTTP based detection of WAGO PLC Controllers. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

WAGO PLC Detection (SNMP)

SNMP based detection of WAGO PLC Controllers. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...