CNNVD-202507-650 Information
Jul 07, 2025
cve
CNNVD ID
CNNVD-202507-650
Related CVE
- CNNVD Published: 2025-07-07
Description (Chinese)
WAGO Device Sphere是德国万可(WAGO)公司的一个设备管理系统。 WAGO Device Sphere存在安全漏洞,该漏洞源于远程未经验证的攻击者可使用默认证书生成JWT令牌,获取完全访问权限。
Description (English)
WAGO Device Sphere is an equipment management system of WAGO, Germany. WAGO Device Sphere has a security loophole, which stems from the fact that a remote unverified assailant can use a default certificate to generate a JWT token to obtain full access.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
万可
Published
2025-07-07
Last Modified
2026-02-24
References
https://cert.vde.com/en/advisories/VDE-2025-057 https://wago.csaf-tp.certvde.com/.well-known/csaf/white/2025/vde-2025-057.json https://access.redhat.com/security/cve/cve-2025-41672
Patch
https://downloadcenter.wago.com/wago/software/details/mc4hj4i3hqdt9iutvxu
Share on: