1. CVE-Search
  2. CVE-2015-6473
ID CVE-2015-6473
Summary WAGO IO 750-849 01.01.27 and WAGO IO 750-881 01.02.05 do not contain privilege separation.
References
Vulnerable Configurations
  • cpe:2.3:o:wago:750-849_firmware:01.01.27:*:*:*:*:*:*:*
    cpe:2.3:o:wago:750-849_firmware:01.01.27:*:*:*:*:*:*:*
  • cpe:2.3:h:wago:750-849:-:*:*:*:*:*:*:*
    cpe:2.3:h:wago:750-849:-:*:*:*:*:*:*:*
  • cpe:2.3:o:wago:758-870_firmware:01.01.27:*:*:*:*:*:*:*
    cpe:2.3:o:wago:758-870_firmware:01.01.27:*:*:*:*:*:*:*
  • cpe:2.3:o:wago:758-870_firmware:01.02.05:*:*:*:*:*:*:*
    cpe:2.3:o:wago:758-870_firmware:01.02.05:*:*:*:*:*:*:*
  • cpe:2.3:h:wago:758-870:-:*:*:*:*:*:*:*
    cpe:2.3:h:wago:758-870:-:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 26-08-2017 - 09:15)
Impact:
Exploitability:
CWE CWE-254
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 84138
fulldisc 20160303 WAGO IO PLC 758-870, 750-849, 750-849 vulnerabilities
misc http://packetstormsecurity.com/files/136077/WAGO-IO-PLC-758-870-750-849-Credential-Management-Privilege-Separation.html
Last major update 26-08-2017 - 09:15
Published 22-08-2017 - 18:29
Last modified 26-08-2017 - 09:15
Back to Top