3 matches found
CVE-2022-45140
The configuration backend allows an unauthenticated user to write arbitrary data with root privileges to the storage, which could lead to unauthenticated remote code execution and full system compromise...
Wago Multiple Products Web-based Management Missing Authentication for Critical Function (CVE-2022-45140)
The configuration backend allows an unauthenticated user to write arbitrary data with root privileges to the storage, which could lead to unauthenticated remote code execution and full system compromise. This plugin only works with Tenable.ot. Please visit...
CVE-2022-45140
CVE-2022-45140 affects WAGO products (e.g., PFC100, CC100, Edge Controller, PFC200, Touch Panel 600 series) where the configuration backend allows an unauthenticated user to write arbitrary data to storage with root privileges, enabling unauthenticated remote code execution and full system compro...