1. Home
  2. CVE Database
  3. CVE-2020-12522
CRITICAL · 10.0

CVE-2020-12522

The reported vulnerability allows an attacker who has network access to the device to execute code with specially crafted packets in WAGO Series PFC 100 (750-81xx/xxx-xxx), Series PFC 200 (750-82xx/xx...

Vulnerability Description

The reported vulnerability allows an attacker who has network access to the device to execute code with specially crafted packets in WAGO Series PFC 100 (750-81xx/xxx-xxx), Series PFC 200 (750-82xx/xxx-xxx), Series Wago Touch Panel 600 Standard Line (762-4xxx), Series Wago Touch Panel 600 Advanced Line (762-5xxx), Series Wago Touch Panel 600 Marine Line (762-6xxx) with firmware versions <=FW10.

CVSS Score

10.0

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
WagoPfc 100 Firmware<= 10
Wago750-8101\/025-000-
Wago750-8102\/025-000-
WagoPfc 200 Firmware<= 10
Wago750-8202\/000-012-
Wago750-8202\/000-022-
Wago750-8202\/040-000-
Wago750-8202\/040-001-
Wago750-8206\/025-000-
Wago750-8206\/025-001-
Wago750-8206\/040-000-
Wago750-8206\/040-001-
Wago750-8207\/025-000-
Wago750-8207\/025-001-
Wago750-8208\/025-000-
Wago750-8208\/025-001-
Wago750-8210\/025-000-
Wago750-8210\/040-000-
Wago750-8211\/040-000-
Wago750-8211\/040-001-

Related Weaknesses (CWE)

CWE-78

References

FAQ

What is CVE-2020-12522?

CVE-2020-12522 is a vulnerability with a CVSS score of 10.0 (CRITICAL). The reported vulnerability allows an attacker who has network access to the device to execute code with specially crafted packets in WAGO Series PFC 100 (750-81xx/xxx-xxx), Series PFC 200 (750-82xx/xx...

How severe is CVE-2020-12522?

CVE-2020-12522 has been rated CRITICAL with a CVSS base score of 10.0/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2020-12522?

Check the references section above for vendor advisories and patch information. Affected products include: Wago Pfc 100 Firmware, Wago 750-8101\/025-000, Wago 750-8102\/025-000, Wago Pfc 200 Firmware, Wago 750-8202\/000-012.