VYPR
Unrated severityNVD Advisory· Published Dec 17, 2020· Updated Sep 16, 2024

Command Injection Vulnerability in I/O-Check Service of WAGO PFC100, PFC200 and Touch Panel 600 Series with firmware versions <=FW10

CVE-2020-12522

Description

The reported vulnerability allows an attacker who has network access to the device to execute code with specially crafted packets in WAGO Series PFC 100 (750-81xx/xxx-xxx), Series PFC 200 (750-82xx/xxx-xxx), Series Wago Touch Panel 600 Standard Line (762-4xxx), Series Wago Touch Panel 600 Advanced Line (762-5xxx), Series Wago Touch Panel 600 Marine Line (762-6xxx) with firmware versions <=FW10.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • Wago/Series PFC 100llm-create2 versions
    <=FW10+ 1 more
    • (no CPE)range: <=FW10
    • (no CPE)range: FW1
  • Range: <=FW10
  • WAGO/Series PFC 200 (750-82xx/xxx-xxx)v5
    Range: FW1
  • WAGO/Series Wago Touch Panel 600 Advanced Line (762-5xxx)v5
    Range: FW1
  • WAGO/Series Wago Touch Panel 600 Marine Line (762-6xxx)v5
    Range: FW1
  • WAGO/Series Wago Touch Panel 600 Standard Line (762-4xxx)v5
    Range: FW1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.