2 matches found
CVE-2019-5159
CVE-2019-5159 affects WAGO e!COCKPIT 1.6.0.7. The vulnerability arises from improper input validation in the firmware update mechanism, allowing a crafted firmware update (wup) package to cause writing of arbitrary files to arbitrary locations on WAGO controllers during update. The flaw is trigge...
CVE-2019-5159
An exploitable improper input validation vulnerability exists in the firmware update functionality of WAGO e!COCKPIT automation software v1.6.0.7. A specially crafted firmware update file can allow an attacker to write arbitrary files to arbitrary locations on WAGO controllers as a part of...