CVE-2021-34568
- EPSS 0.4%
- Published 09.11.2022 16:15:12
- Last modified 21.11.2024 06:10:42
In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a specially crafted packet containing OS commands to provoke a denial of service.
CVE-2021-34569
- EPSS 0.12%
- Published 09.11.2022 16:15:12
- Last modified 21.11.2024 06:10:43
In WAGO I/O-Check Service in multiple products an attacker can send a specially crafted packet containing OS commands to crash the diagnostic tool and write memory.
CVE-2021-34567
- EPSS 0.95%
- Published 09.11.2022 16:15:11
- Last modified 21.11.2024 06:10:42
In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a specially crafted packet containing OS commands to provoke a denial of service and an limited out-of-bounds read.
CVE-2021-34566
- EPSS 0.31%
- Published 09.11.2022 16:15:10
- Last modified 21.11.2024 06:10:42
In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a specially crafted packet containing OS commands to crash the iocheck process and write memory resulting in loss of integrity and DoS.
CVE-2022-22511
- EPSS 0.07%
- Published 09.03.2022 20:15:08
- Last modified 21.11.2024 06:46:55
Various configuration pages of the device are vulnerable to reflected XSS (Cross-Site Scripting) attacks. An authorized attacker with user privileges may use this to gain access to confidential information on a PC that connects to the WBM after it ha...