PT-2023-3435 · Wago · Wago

Abdelrahman Hassanien

Publicado

2023-06-20

Atualizado

2024-10-02

CVE-2023-1619

CVSS v2.0

6.1

Média

Vetor

AV:N/AC:L/Au:M/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions WAGO devices (affected versions not specified)

Description The issue is related to insufficient input validation in the software of WAGO programmable logic controllers, which may allow an authenticated remote attacker with high privileges to cause a denial of service (DoS) by sending a malformed packet.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Improper Resource Release

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-1288CWE-20CWE-404

Identificadores relacionados

BDU:2023-03614

CVE-2023-1619

Produtos afetados

Wago

PT-2023-3435 · Wago · Wago

CVE-2023-1619

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6