Advisories

Für CVSS 2.0, 3.0 und 3.2
VDE-2019-013
Juni 12, 2019, 12:25 nachm.

WAGO: Multiple Vulnerabilities in industrial managed switches

Multiple vulnerabilities have been identified in WAGO 852-303, 852-1305 and 852-1505 industrial managed ethernet switches.
CVE-2019-12550
CVE-2019-12549
CVE-2016-2148
CVE-2014-9984
CVE-2014-9761
CVE-2017-16544
CVE-2016-6301
CVE-2016-2147
CVE-2011-5325
CVE-2015-9261
CVE-2010-0296
CVE-2013-1813
CVE-2015-0235
CVE-2015-1472
CVE-2014-9402
CVE-2014-4043
CVE-2012-4412
CVE-2011-2716
CVE-2010-3856
VDE-2018-013
Sept. 22, 2025, 12:00 nachm.

WAGO: 750-8xx Controller Denial of Service

The 750-8xx controller are susceptible to a Denial-of-Service attack due to a flood of network packets. Please consult the original paper for details (link at the bottom of this advisory).
CVE-2018-25108
VDE-2018-010
Mai 22, 2025, 3:03 nachm.

WAGO: Multiple vulnerabilities in e!DISPLAY products

An unauthenticated user can exploit a vulnerability (CVE-2018-12981) to inject code in the WBM via reflected cross-site scripting (XSS), if he is able trick a user to open a special …
CVE-2018-12981
CVE-2018-12980
CVE-2018-12979