CVE-2019-10712

EPSS 0.98%
Published 07.05.2019 22:29:00
Last modified 21.11.2024 04:19:47
Source cve@mitre.org
Teams watchlist Login
Open Login

The Web-GUI on WAGO Series 750-88x (750-330, 750-352, 750-829, 750-831, 750-852, 750-880, 750-881, 750-882, 750-884, 750-885, 750-889) and Series 750-87x (750-830, 750-849, 750-871, 750-872, 750-873) devices has undocumented service access.

Affected products Warnungen 0 Metrics 3 CWE 1 References 12

Data is provided by the National Vulnerability Database (NVD)

Wago ≫ 750-830 Firmware Version < 06

Wago ≫ 750-830 Version-

Wago ≫ 750-849 Firmware Version < 08

Wago ≫ 750-849 Version-

Wago ≫ 750-871 Firmware Version < 11

Wago ≫ 750-871 Version-

Wago ≫ 750-872 Firmware Version < 07

Wago ≫ 750-872 Version-

Wago ≫ 750-873 Firmware Version < 07

Wago ≫ 750-873 Version-

Wago ≫ 750-330 Firmware Version < 14

Wago ≫ 750-330 Version-

Wago ≫ 750-352 Firmware Version < 14

Wago ≫ 750-352 Version-

Wago ≫ 750-829 Firmware Version < 14

Wago ≫ 750-829 Version-

Wago ≫ 750-831 Firmware Version < 14

Wago ≫ 750-831 Version-

Wago ≫ 750-852 Firmware Version < 14

Wago ≫ 750-852 Version-

Wago ≫ 750-880 Firmware Version < 14

Wago ≫ 750-880 Version-

Wago ≫ 750-881 Firmware Version < 14

Wago ≫ 750-881 Version-

Wago ≫ 750-882 Firmware Version < 14

Wago ≫ 750-882 Version-

Wago ≫ 750-884 Firmware Version < 14

Wago ≫ 750-884 Version-

Wago ≫ 750-885 Firmware Version < 14

Wago ≫ 750-885 Version-

Wago ≫ 750-889 Firmware Version < 14

Wago ≫ 750-889 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.98%	0.747

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

CWE-798 Use of Hard-coded Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

http://www.securityfocus.com/bid/108482

https://cert.vde.com/de-de/advisories/vde-2019-008

Third Party Advisory

https://lists.apache.org/thread.html/r0066c1e862613de402fee04e81cbe00bcd64b64a2711beb9a13c3b25%40%3Ccommits.cassandra.apache.org%3E

https://lists.apache.org/thread.html/r25e25973e9577c62fd0221b4b52990851adf11cbe33036bd67d4b13d%40%3Ccommits.cassandra.apache.org%3E

https://lists.apache.org/thread.html/r37eb6579fa0bf94a72b6c978e2fee96f68a2b1b3ac1b1ce60aee86cf%40%3Ccommits.cassandra.apache.org%3E

https://lists.apache.org/thread.html/r386966780034aadee69ffd82d44555117c9339545b9ce990fe490a3e%40%3Ccommits.cassandra.apache.org%3E

https://lists.apache.org/thread.html/r80e8882c86c9c17a57396a5ef7c4f08878d629a0291243411be0de3a%40%3Ccommits.cassandra.apache.org%3E

https://lists.apache.org/thread.html/ra37700b842790883b9082e6b281fb7596f571b13078a4856cd38f2c2%40%3Ccommits.cassandra.apache.org%3E

https://lists.apache.org/thread.html/rb47911c179c9f3e8ea3f134b5645e63cd20c6fc63bd0b43ab5864bd1%40%3Ccommits.cassandra.apache.org%3E

https://nvd.nist.gov/vuln/detail/CVE-2019-10712

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2019-10712

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2019-10712

EUVD