Command Injection Vulnerability in I/O-Check Service of WAGO PFC100, PFC200 and Touch Panel 600 Series with firmware versions <=FW10
CVE-2020-12522

10CRITICAL

Key Information:

Vendor: Wago
Status: Series Pfc 100 (750-81xx/xxx-xxx); Series Pfc 200 (750-82xx/xxx-xxx); Series Wago Touch Panel 600 Standard Line (762-4xxx); Series Wago Touch Panel 600 Advanced Line (762-5xxx)
Vendor: CVE Published:; 17 December 2020

Summary

The reported vulnerability allows an attacker who has network access to the device to execute code with specially crafted packets in WAGO Series PFC 100 (750-81xx/xxx-xxx), Series PFC 200 (750-82xx/xxx-xxx), Series Wago Touch Panel 600 Standard Line (762-4xxx), Series Wago Touch Panel 600 Advanced Line (762-5xxx), Series Wago Touch Panel 600 Marine Line (762-6xxx) with firmware versions <=FW10.

Affected Version(s)

Series PFC 100 (750-81xx/xxx-xxx) FW1

Series PFC 200 (750-82xx/xxx-xxx) FW1

Series Wago Touch Panel 600 Advanced Line (762-5xxx) FW1

References

https://cert.vde.com/en-us/advisories/vde-2020-045

x_refsource_CONFIRM

CVSS V3.1

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Dec 17, 2020
Vulnerability Reserved
Apr 30, 2020

Credit

This vulnerability was originally found by Florian Seidel of WAGO and was rediscovered by Uri Katz of Claroty. We thank CERT@VDE for the management of this coordinated disclosure.