WAGO PFC200 Firmware 22 Patch 1

CPE Details

WAGO PFC200 Firmware 22 Patch 1
wago
pfc200_firmware
22
2023-03-06
17h12 +00:00
2023-03-07
13h22 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:wago:pfc200_firmware:22:patch_1:*:*:*:*:*:*

Informations

Vendor

wago

Product

pfc200_firmware

Version

22

Update

patch_1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-3379 2023-11-20 07h23 +00:00 Wago web-based management of multiple products has a vulnerability which allows an local authenticated attacker to change the passwords of other non-admin users and thus to escalate non-root privileges.
5.3
Medium
CVE-2023-4089 2023-10-17 06h00 +00:00 On affected Wago products an remote attacker with administrative privileges can access files to which he has already access to through an undocumented local file inclusion. This access is logged in a different log file than expected.
2.7
Low
CVE-2023-1698 2023-05-15 08h51 +00:00 In multiple products of WAGO a vulnerability allows an unauthenticated, remote attacker to create new users and change the device configuration which can result in unintended behaviour, Denial of Service and full system compromise.
9.8
Critical
CVE-2022-3738 2023-01-19 11h27 +00:00 The vulnerability allows a remote unauthenticated attacker to download a backup file, if one exists. That backup file might contain sensitive information like credentials and cryptographic material. A valid user has to create a backup after the last reboot for this attack to be successfull.
5.9
Medium