Lucene search
K

15 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:41 a.m.7 views

CVE-2019-5172

An exploitable command injection vulnerability exists in the iocheckd service ‘I/O-Check’ function of the WAGO PFC 200 Firmware version 03.02.0214. An attacker can send a specially crafted packet to trigger the parsing of this cache file. At 0x1e840 the extracted ntp value from the xml file is us...

7.8CVSS7.3AI score0.01336EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:41 a.m.7 views

CVE-2019-5179

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.0214. An attacker can send a specially crafted packet to trigger the parsing of this cache file...

7.8CVSS7.2AI score0.00656EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2023/02/14 12:0 a.m.21 views

Wago PFC200 iocheckd service 'I/O-Check' cache Code Execution (CVE-2019-5181)

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service I/O-Check' functionality of WAGO PFC 200 Firmware version 03.02.0214. A specially crafted XML cache file written to a specific location on the device can cause a stack buffer overflow, resulting in cod...

7.8CVSS8AI score0.00818EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/02/14 12:0 a.m.20 views

Wago PFC200 iocheckd service 'I/O-Check' cache Code Execution (CVE-2019-5178)

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service I/O-Check' functionality of WAGO PFC 200 Firmware version 03.02.0214. An attacker can send a specially crafted packet to trigger the parsing of this cache file. The destination buffer sp+0x440 is...

7.8CVSS7.8AI score0.00656EPSS
Exploits1References2
Prion
Prion
added 2020/03/12 12:15 a.m.18 views

Stack overflow

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.0214. The destination buffer sp+0x440 is overflowed with the call to sprintf for any domainname values that are greater than...

2.1CVSS6.2AI score0.00457EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2020/03/12 12:15 a.m.20 views

Stack overflow

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.0214. An attacker can send a specially crafted packet to trigger the parsing of this cache file. The destination buffer sp+0x440 is...

4.6CVSS7.6AI score0.00656EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2020/03/12 12:15 a.m.22 views

Stack overflow

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.0214. An attacker can send a specially crafted packet to trigger the parsing of this cache file...

4.6CVSS7.7AI score0.00656EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2020/03/11 11:31 p.m.110 views

CVE-2019-5181

CVE-2019-5181 affects WAGO PFC200 with the iocheckd service “I/O-Check.” A crafted cache file at /tmp/iocheckCache.xml is parsed by iocheckd, triggering stack-based buffer overflows via sscanf/sprintf usage in multiple config nodes (e.g., hostname, subnetmask, gateway, etc.). The root cause is un...

7.8CVSS7.8AI score0.00818EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/03/11 11:25 p.m.33 views

CVE-2019-5178

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.0214. An attacker can send a specially crafted packet to trigger the parsing of this cache file. The destination buffer sp+0x440 is...

7.7AI score0.00656EPSS
Exploits1References1
CVE
CVE
added 2020/03/11 11:24 p.m.104 views

CVE-2019-5176

CVE-2019-5176 affects WAGO PFC200, specifically the iocheckd service (I/O-Check) firmware 03.02.02(14). The issue is a stack buffer overflow when parsing a cache file (iocheckCache.xml) used by the iocheckd configuration protocol. Attackers can craft an XML cache file or gateway/hostname/domainna...

5.5CVSS6.1AI score0.00526EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/03/11 11:17 p.m.21 views

CVE-2019-5171

An exploitable command injection vulnerability exists in the iocheckd service ‘I/O-Check’ function of the WAGO PFC 200 Firmware version 03.02.0214. An attacker can send specially crafted packet at 0x1ea48 to the extracted hostname value from the xml file that is used as an argument to...

7.8AI score0.01389EPSS
Exploits1References1
CVE
CVE
added 2020/03/11 11:17 p.m.134 views

CVE-2019-5170

CVE-2019-5170 (WAGO PFC200) affects the iocheckd “I/O-Check” caching component. The vulnerability arises while parsing a crafted XML cache file (iocheckCache.xml) placed in a writable location (notably /tmp). For the hostname node, the code uses its content in a call to sprintf to build a command...

7.8CVSS7.6AI score0.01358EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2020/03/11 11:15 p.m.4 views

CVE-2019-5172

An exploitable command injection vulnerability exists in the iocheckd service ‘I/O-Check’ function of the WAGO PFC 200 Firmware version 03.02.0214. An attacker can send a specially crafted packet to trigger the parsing of this cache file. At 0x1e840 the extracted ntp value from the xml file is us...

7.8CVSS7.1AI score0.01336EPSS
Exploits1References1
CVE
CVE
added 2020/03/11 10:18 p.m.97 views

CVE-2019-5173

CVE-2019-5173 affects WAGO PFC200 with the iocheckd service “I/O-Check”. A specially crafted XML cache file parsed by iocheckd (cache at /tmp/iocheckCache.xml) can inject OS commands, which are constructed via sprintf() from XML node contents and executed through system(). The TALOS report detail...

7.8CVSS7.6AI score0.01358EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2020/03/11 10:9 p.m.94 views

CVE-2019-5182

Affected software: WAGO PFC200 with iocheckd service “I/O-Check”. Vulnerability: stack-based buffer overflow in parsing the XML cache file used by iocheckCache.xml, triggered by crafted cache content (e.g., settings affecting hostname/name, etc.). Root cause: overlong input copied into a 1024-byt...

5.5CVSS6.1AI score0.00526EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder