Medium severity5.3NVD Advisory· Published Apr 3, 2018· Updated Jun 17, 2026
CVE-2018-8836
CVE-2018-8836
Description
Wago 750 Series PLCs with firmware version 10 and prior include a remote attack may take advantage of an improper implementation of the 3 way handshake during a TCP connection affecting the communications with commission and service tools. Specially crafted packets may also be sent to Port 2455/TCP/IP, used in Codesys management software, which may result in a denial-of-service condition of communications with commissioning and service tools.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=10
- WAGO/WAGO 750 Seriesv5Range: 750-880 firmware version 10 and prior
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/103726nvdThird Party AdvisoryVDB Entry
- ics-cert.us-cert.gov/advisories/ICSA-18-088-01nvdThird Party AdvisoryUS Government Resource
- www.wago.com/medias/Vulnerability-in-the-WAGO-Ethernet-TCP-IP-driver.pdfnvdVendor Advisory
News mentions
0No linked articles in our index yet.