Skip to main content

750 331 Firmware CVE-2023-1619

MEDIUM
Improper Validation of Consistency within Input (CWE-1288)
2023-06-26 info@cert.vde.com
Information Disclosure 750 331 Firmware 750 8202 Firmware 750 8202 000 011 Firmware 750 8202 000 012 Firmware 750 8202 000 022 Firmware 750 8202 025 000 Firmware 750 8202 025 001 Firmware 750 8202 025 002 Firmware 750 8202 040 000 Firmware 750 8202 040 001 Firmware 750 8203 Firmware 750 8203 025 000 Firmware 750 8204 Firmware 750 8204 025 000 Firmware 750 8206 Firmware 750 8206 025 000 Firmware 750 8206 025 001 Firmware 750 8206 040 000 Firmware 750 8206 040 001 Firmware 750 8207 Firmware 750 8207 025 000 Firmware 750 8207 025 001 Firmware 750 8208 Firmware 750 8208 025 000 Firmware 750 8208 025 001 Firmware 750 8210 Firmware 750 8210 025 000 Firmware 750 8210 040 000 Firmware 750 8211 Firmware 750 8211 040 000 Firmware 750 8211 040 001 Firmware 750 8212 Firmware 750 8212 000 100 Firmware 750 8212 025 000 Firmware 750 8212 025 001 Firmware 750 8212 025 002 Firmware 750 8212 040 000 Firmware 750 8212 040 001 Firmware 750 8212 040 010 Firmware 750 8213 Firmware 750 8213 040 010 Firmware 750 8214 Firmware 750 8215 Firmware 750 8216 Firmware 750 8216 025 000 Firmware 750 8216 025 001 Firmware 750 8216 040 000 Firmware 750 8217 Firmware 750 8217 025 000 Firmware 750 8217 600 000 Firmware 750 8217 625 000 Firmware 750 823 Firmware 750 829 Firmware 750 831 Firmware 750 831 000 002 Firmware 750 832 Firmware 750 832 000 002 Firmware 750 852 Firmware 750 862 Firmware 750 880 Firmware 750 880 025 000 Firmware 750 880 025 001 Firmware 750 880 025 002 Firmware 750 880 040 000 Firmware 750 881 Firmware 750 882 Firmware 750 885 Firmware 750 885 025 000 Firmware 750 889 Firmware 750 890 Firmware 750 890 025 000 Firmware 750 890 025 001 Firmware 750 890 025 002 Firmware 750 890 040 000 Firmware 750 891 Firmware 750 893 Firmware
4.9
CVSS 3.1 · Vendor: cert
Share

Severity by source

Vendor (cert) PRIMARY
4.9 MEDIUM
AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Primary rating from Vendor (cert) · only source for this CVE.

CVSS VectorVendor: cert

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

1
CVE Published
Jun 26, 2023 - 07:15 cve.org
MEDIUM 4.9

DescriptionCVE.org

Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high privileges to DoS the device by sending a malformed packet.

AnalysisAI

Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high privileges to DoS the device by sending a malformed packet. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified under CWE-1288. Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high privileges to DoS the device by sending a malformed packet. Affected products include: Wago 750-331 Firmware, Wago 750-8202 Firmware, Wago 750-8202\/000-011 Firmware, Wago 750-8202\/000-012 Firmware, Wago 750-8202\/000-022 Firmware.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

Share

CVE-2023-1619 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy