CVE-2020-12522 Information

Description

The reported vulnerability allows an attacker who has network access to the device to execute code with specially crafted packets in WAGO Series PFC 100 (750-81xx/xxx-xxx) Series PFC 200 (750-82xx/xxx-xxx) Series Wago Touch Panel 600 Standard Line (762-4xxx) Series Wago Touch Panel 600 Advanced Line (762-5xxx) Series Wago Touch Panel 600 Marine Line (762-6xxx) with firmware versions <=FW10.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Reference

https://cert.vde.com/en-us/advisories/vde-2020-045

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

9.8