CVE-2021-21000

EPSS 0.13%
Published 24.05.2021 11:15:07
Last modified 15.08.2025 20:21:18
Source info@cert.vde.com
Teams watchlist Login
Open Login

On WAGO PFC200 devices in different firmware versions with special crafted packets an attacker with network access to the device could cause a denial of service for the login service of the runtime.

Affected products Warnungen 0 Metrics 4 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Wago ≫ 750-823 Firmware Version < fw08

Wago ≫ 750-823 Version-

Wago ≫ 750-829 Firmware Version < fw15

Wago ≫ 750-829 Version-

Wago ≫ 750-831 Firmware Version < fw15

Wago ≫ 750-831 Version-

Wago ≫ 750-832 Firmware Version < fw08

Wago ≫ 750-832 Version-

Wago ≫ 750-852 Firmware Version < fw15

Wago ≫ 750-852 Version-

Wago ≫ 750-862 Firmware Version < fw08

Wago ≫ 750-862 Version-

Wago ≫ 750-880 Firmware Version < fw16

Wago ≫ 750-880 Version-

Wago ≫ 750-881 Firmware Version < fw15

Wago ≫ 750-881 Version-

Wago ≫ 750-882 Firmware Version < fw15

Wago ≫ 750-882 Version-

Wago ≫ 750-885 Firmware Version < fw15

Wago ≫ 750-885 Version-

Wago ≫ 750-889 Firmware Version < fw15

Wago ≫ 750-889 Version-

Wago ≫ 750-890 Firmware Version < fw08

Wago ≫ 750-890 Version-

Wago ≫ 750-891 Firmware Version < fw08

Wago ≫ 750-891 Version-

Wago ≫ 750-893 Firmware Version < fw08

Wago ≫ 750-893 Version-

Wago ≫ 750-8202 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8202 Version-

Wago ≫ 750-8203 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8203 Version-

Wago ≫ 750-8204 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8204 Version-

Wago ≫ 750-8206 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8206 Version-

Wago ≫ 750-8207 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8207 Version-

Wago ≫ 750-8208 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8208 Version-

Wago ≫ 750-8210 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8210 Version-

Wago ≫ 750-8211 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8211 Version-

Wago ≫ 750-8212 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8212 Version-

Wago ≫ 750-8213 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8213 Version-

Wago ≫ 750-8214 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8214 Version-

Wago ≫ 750-8216 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8216 Version-

Wago ≫ 750-8217 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8217 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.13%	0.292

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P
info@cert.vde.com	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-770 Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

https://cert.vde.com/en-us/advisories/vde-2021-014

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-21000

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-21000

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-21000

EUVD