CVE-2023-5188

Name of the Vulnerable Software and Affected Versions WagoAppRTU versions prior to 1.4.6.0

Description The issue is related to the MMS Interpreter of WagoAppRTU, which is used by the WAGO Telecontrol Configurator. It is vulnerable to malformed packets, allowing a remote unauthenticated attacker to send specifically crafted packets that lead to a denial-of-service condition until the restart of the affected device. The vulnerability is associated with errors in processing input data.

Recommendations For versions prior to 1.4.6.0, update to version 1.4.6.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the MMS Interpreter to minimize the risk of exploitation.