CVE-2019-5175

Name of the Vulnerable Software and Affected Versions WAGO PFC 200 Firmware version 03.02.02(14)

Description A command injection issue exists in the iocheckd service 'I/O-Check' function. This is due to the parsing of a specially crafted XML cache file, which can be used to inject OS commands. An attacker can trigger the parsing of this cache file by sending a specially crafted packet. The vulnerability involves the use of the extracted type value from the XML file as an argument to the /etc/config-tools/config interfaces interface, which is later executed via a call to system(). The config-type parameter is set to the contents of the type node, using sprintf().

Recommendations For WAGO PFC 200 Firmware version 03.02.02(14), consider disabling the 'I/O-Check' function in the iocheckd service until a patch is available. Restrict access to the XML cache file to minimize the risk of exploitation. Avoid using the config-type parameter in the /etc/config-tools/config interfaces interface until the issue is resolved.