Wago · Wago Series Pfc200 · CVE-2019-18202
**Name of the Vulnerable Software and Affected Versions**
WAGO Series PFC100 and PFC200 devices versions prior to FW12
**Description**
The issue allows for Information Disclosure due to improper access control. A remote attacker can exploit this by sending crafted HTTP requests to check for the existence of paths and file names.
**Recommendations**
For WAGO Series PFC100 and PFC200 devices versions prior to FW12, update to FW12 or later to resolve the issue. As a temporary workaround, consider restricting access to the devices to minimize the risk of exploitation.