Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Tenable Nessus
Tenable Nessusadded 2023/02/14 12:0 a.m.35 views

WAGO I/O-CHECK Missing Authentication For Critical Function (CVE-2019-5078)

An exploitable denial of service vulnerability exists in the iocheckd service I/O-Check functionality of WAGO PFC200 Firmware versions 03.01.0713 and 03.00.3912, and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a denial of service, resulting in the device...

9.4CVSS8.2AI score0.00662EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2023/02/14 12:0 a.m.26 views

WAGO I/O-CHECK Insertion of Sensitive Information Into Sent Data (CVE-2019-5073)

An exploitable information exposure vulnerability exists in the iocheckd service I/O-Check functionality of WAGO PFC200 Firmware versions 03.01.0713 and 03.00.3912, and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause an external tool to fail, resulting in...

5.3CVSS5.8AI score0.00725EPSS
Exploits1References3
Prion
Prionadded 2020/03/11 10:27 p.m.19 views

Command injection

An exploitable command injection vulnerability exists in the Cloud Connectivity functionality of WAGO PFC200 Firmware versions 03.02.0214, 03.01.0713, and 03.00.3912. An attacker can inject OS commands into the TimeoutUnconfirmed parameter value contained in the Firmware Update command...

6.5CVSS7.2AI score0.02838EPSS
Exploits1References1Affected Software1
Prion
Prionadded 2020/03/11 10:27 p.m.17 views

Authentication flaw

An exploitable timing discrepancy vulnerability exists in the authentication functionality of the Web-Based Management WBM web application on WAGO PFC100/200 controllers. The WBM application makes use of the PHP crypt function which can be exploited to disclose hashed user credentials. This affec...

5CVSS6AI score0.00164EPSS
Exploits1References1Affected Software2
OSV
OSVadded 2019/12/18 9:15 p.m.1 views

CVE-2019-5078

An exploitable denial of service vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC200 Firmware versions 03.01.0713 and 03.00.3912, and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a denial of service, resulting in the devic...

9.1CVSS7.3AI score
Exploits0References1
OSV
OSVadded 2019/12/18 9:15 p.m.2 views

CVE-2019-5079

An exploitable heap buffer overflow vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC200 Firmware versions 03.01.0713 and 03.00.3912, and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a heap buffer overflow, potentially...

9.8CVSS7.6AI score
Exploits0References1
OSV
OSVadded 2019/12/18 8:15 p.m.1 views

CVE-2019-5074

An exploitable stack buffer overflow vulnerability exists in the iocheckd service ''I/O-Check'' functionality of WAGO PFC200 Firmware version 03.01.0713, WAGO PFC200 Firmware version 03.00.3912 and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a stack buffe...

9.8CVSS7.6AI score
Exploits0References1
Talos
Talosadded 2019/12/16 12:0 a.m.85 views

WAGO PFC200 iocheckd service "I/O-Check" get_coupler_details remote code execution vulnerability

Summary An exploitable stack buffer overflow vulnerability exists in the command line utility getcouplerdetails of the WAGO PFC 200. A specially crafted set of packets sent to the iocheckd service “I/O-Check” can cause a stack buffer overflow in the sub-process getcouplerdetails, resulting in cod...

10CVSS10AI score0.00956EPSS
Exploits1
Rows per page
Query Builder