PT-2023-14617 · Wago · 751-9301 Firmware+13
Ryan Pickren
·
Published
2023-02-27
·
Updated
2023-03-07
·
CVE-2022-45139
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
No specific software or versions are mentioned.
Description
A CORS misconfiguration in the web-based management allows a malicious third-party web server to misuse basic information pages, potentially leading to the disclosure of device information such as CPU diagnostics. The impact is limited to a small subset of confidentiality due to the restricted amount of readable information.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Origin Validation Error
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
751-9301 Firmware
752-8303/8000-002 Firmware
Compact Controller Cc100
Edge Controller
Pfc100
Pfc200
Touch Panel 600 Advanced Line
Touch Panel 600 Marine Line
Touch Panel 600 Standard Line
Pfc100 Firmware
Pfc200 Firmware
Touch Panel 600 Advanced Firmware
Touch Panel 600 Marine Firmware
Touch Panel 600 Standard Firmware