CVE-2018-8836 — MEDIUM (5.3)

Q: How severe is CVE-2018-8836?

CVE-2018-8836 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-8836?

Check the references section above for vendor advisories and patch information. Affected products include: Wago 750-880 Firmware, Wago 750-880, Wago 750-881 Firmware, Wago 750-881, Wago 750-852 Firmware.

Vulnerability Description

Wago 750 Series PLCs with firmware version 10 and prior include a remote attack may take advantage of an improper implementation of the 3 way handshake during a TCP connection affecting the communications with commission and service tools. Specially crafted packets may also be sent to Port 2455/TCP/IP, used in Codesys management software, which may result in a denial-of-service condition of communications with commissioning and service tools.

CVSS Score

5.3

MEDIUM

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

LOW

Affected Products

Vendor	Product	Versions
Wago	750-880 Firmware	<= 10
Wago	750-880	-
Wago	750-881 Firmware	<= 10
Wago	750-881	-
Wago	750-852 Firmware	<= 10
Wago	750-852	-
Wago	750-882 Firmware	<= 10
Wago	750-882	-
Wago	750-885 Firmware	<= 10
Wago	750-885	-
Wago	750-831 Firmware	<= 10
Wago	750-831	-
Wago	750-889 Firmware	<= 10
Wago	750-889	-
Wago	750-829 Firmware	<= 10
Wago	750-829	-

Related Weaknesses (CWE)

CWE-404

References

http://www.securityfocus.com/bid/103726Third Party AdvisoryVDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-18-088-01Third Party AdvisoryUS Government Resource
https://www.wago.com/medias/Vulnerability-in-the-WAGO-Ethernet-TCP-IP-driver.pdfVendor Advisory
http://www.securityfocus.com/bid/103726Third Party AdvisoryVDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-18-088-01Third Party AdvisoryUS Government Resource
https://www.wago.com/medias/Vulnerability-in-the-WAGO-Ethernet-TCP-IP-driver.pdfVendor Advisory

FAQ

What is CVE-2018-8836?

CVE-2018-8836 is a vulnerability with a CVSS score of 5.3 (MEDIUM). Wago 750 Series PLCs with firmware version 10 and prior include a remote attack may take advantage of an improper implementation of the 3 way handshake during a TCP connection affecting the communicat...

How severe is CVE-2018-8836?

CVE-2018-8836 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-8836?

Check the references section above for vendor advisories and patch information. Affected products include: Wago 750-880 Firmware, Wago 750-880, Wago 750-881 Firmware, Wago 750-881, Wago 750-852 Firmware.