0852-1505 Firmware Security Vulnerabilities and Issues — 0852-1505 Firmware CVE List

Lucene search

Wago0852-1505 Firmware

6 matches found

CVE•added 2021/05/13 2:15 p.m.•43 views

CVE-2021-20996

In multiple managed switches by WAGO in different versions special crafted requests can lead to cookies being transferred to third parties.

5.3CVSS5.2AI score0.00206EPSS

CVE•added 2021/05/13 2:15 p.m.•43 views

CVE-2021-20997

In multiple managed switches by WAGO in different versions it is possible to read out the password hashes of all Web-based Management users.

7.5CVSS7.5AI score0.00252EPSS

CVE•added 2021/05/13 2:15 p.m.•41 views

CVE-2021-20998

In multiple managed switches by WAGO in different versions without authorization and with specially crafted packets it is possible to create users.

10CVSS9.5AI score0.00136EPSS

CVE•added 2021/05/13 2:15 p.m.•40 views

CVE-2021-20994

In multiple managed switches by WAGO in different versions an attacker may trick a legitimate user to click a link to inject possible malicious code into the Web-Based Management.

8.8CVSS6.6AI score0.00391EPSS

CVE•added 2021/05/13 2:15 p.m.•39 views

CVE-2021-20993

In multiple managed switches by WAGO in different versions the activated directory listing provides an attacker with the index of the resources located inside the directory.

5.3CVSS5.3AI score0.00232EPSS

CVE•added 2021/05/13 2:15 p.m.•37 views

CVE-2021-20995

In multiple managed switches by WAGO in different versions the webserver cookies of the web based UI contain user credentials.

7.5CVSS6.3AI score0.00127EPSS