Article No° | Product Name | Affected Version(s) |
---|---|---|
0751-9x01 | WAGO CC100 | 03.07.14 (FW19) < 04.07.01 (FW29) |
0751-9x01 | WAGO CC100 Custom Firmware | < 04.07.01 (70) |
0752-8303/8000-0002 | WAGO Edge Controller | 03.07.14 (FW19) < 04.07.01 (FW29) |
0752-8303/8000-0002 | WAGO Edge Controller Custom Firmware | < 04.07.01 (70) |
0750-810x/xxxx-xxxx | WAGO PFC100 G1 | 03.07.14 (FW19) < 03.10.11 (FW22 Patch 2) |
0750-810x/xxxx-xxxx | WAGO PFC100 G1 Custom Firmware | < 03.10.11 (70) |
0750-811x-xxxx-xxxx | WAGO PFC100 G2 | 03.07.14 (FW19) < 04.07.01 (FW29) |
0750-811x-xxxx-xxxx | WAGO PFC100 G2 Custom Firmware | < 04.07.01 (70) |
750-820x-xxx-xxx | WAGO PFC200 G1 | 03.07.14 (FW19) < 03.10.11 (FW22 Patch 2) |
750-820x-xxx-xxx | WAGO PFC200 G1 Custom Firmware | < 03.10.11 (70) |
750-821x-xxx-xxx | WAGO PFC200 G2 | 03.07.14 (FW19) < 04.07.01 (FW29) |
750-821x-xxx-xxx | WAGO PFC200 G2 Custom Firmware | < 04.07.01 (70) |
0762-420x/8000-000x | WAGO TP600 | 03.07.14 (FW19) < 04.07.01 (FW29) |
0762-430x/8000-000x | WAGO TP600 | 03.07.14 (FW19) < 04.07.01 (FW29) |
0762-520x/8000-000x | WAGO TP600 | 03.07.14 (FW19) < 04.07.01 (FW29) |
0762-530x/8000-000x | WAGO TP600 | 03.07.14 (FW19) < 04.07.01 (FW29) |
0762-620x/8000-000x | WAGO TP600 | 03.07.14 (FW19) < 04.07.01 (FW29) |
0762-630x/8000-000x | WAGO TP600 | 03.07.14 (FW19) < 04.07.01 (FW29) |
0762-420x/8000-000x | WAGO TP600 Custom Firmware | < 04.07.01 (70) |
0762-430x/8000-000x | WAGO TP600 Custom Firmware | < 04.07.01 (70) |
0762-520x/8000-000 | WAGO TP600 Custom Firmware | < 04.07.01 (70) |
0762-530x/8000-000x | WAGO TP600 Custom Firmware | < 04.07.01 (70) |
0762-620x/8000-000x | WAGO TP600 Custom Firmware | < 04.07.01 (70) |
0762-630x/8000-000x | WAGO TP600 Custom Firmware | < 04.07.01 (70) |
An attacker with administrative privileges which can access sensitive files can additionally access them in an unintended, undocumented way.
UPDATE 07.05.2025: The fixed versions have been updated, because the previously mentioned versions are still vulnerable to this issue. More details have been added to the hardware devices. More affected version numbers were added to the firmwares.
On affected Wago products an remote attacker with administrative privileges can access files to which he has already access to through an undocumented local file inclusion. This access is logged in a different log file than expected.
User might not notice that files are accessed.
Mitigation
Remediation
We recommend all effected users to update to the firmware version listed below:
The vulnerability was reported by Floris Hendriks and Jeroen Wijenbergh from Radboud University and re-reported by Alwin Warringa from Sopra Steria Red Team
Coordination done by CERT@VDE.