Wago

Pfc200 Firmware

40 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2019-5184

Exploit
  • EPSS 0.05%
  • Veröffentlicht 23.03.2020 14:15:13
  • Zuletzt bearbeitet 21.11.2024 04:44:30

An exploitable double free vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC 200. A specially crafted XML cache file written to a specific location on the device can cause a heap pointer to be freed twice, resulting i...

7

CVE-2019-5185

Exploit
  • EPSS 0.05%
  • Veröffentlicht 23.03.2020 14:15:13
  • Zuletzt bearbeitet 21.11.2024 04:44:30

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC 200. An attacker can send a specially crafted packet to trigger the parsing of this cache file. At 0x1ea28 the extra...

7.8

CVE-2019-5170

Exploit
  • EPSS 0.35%
  • Veröffentlicht 12.03.2020 00:15:18
  • Zuletzt bearbeitet 21.11.2024 04:44:29

An exploitable command injection vulnerability exists in the iocheckd service ‘I/O-Check’ function of the WAGO PFC 200 Firmware version 03.02.02(14). A specially crafted XML cache file written to a specific location on the device can be used to injec...

7.8

CVE-2019-5181

Exploit
  • EPSS 0.07%
  • Veröffentlicht 12.03.2020 00:15:18
  • Zuletzt bearbeitet 21.11.2024 04:44:30

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.02(14). A specially crafted XML cache file written to a specific location on the device c...

7.8

CVE-2019-5180

Exploit
  • EPSS 0.07%
  • Veröffentlicht 12.03.2020 00:15:18
  • Zuletzt bearbeitet 21.11.2024 04:44:30

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.02(14). An attacker can send a specially crafted packet to trigger the parsing of this ca...

7.8

CVE-2019-5179

Exploit
  • EPSS 0.07%
  • Veröffentlicht 12.03.2020 00:15:18
  • Zuletzt bearbeitet 21.11.2024 04:44:30

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.02(14). An attacker can send a specially crafted packet to trigger the parsing of this ca...

7.8

CVE-2019-5178

Exploit
  • EPSS 0.07%
  • Veröffentlicht 12.03.2020 00:15:18
  • Zuletzt bearbeitet 21.11.2024 04:44:29

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.02(14). An attacker can send a specially crafted packet to trigger the parsing of this ca...

5.5

CVE-2019-5177

Exploit
  • EPSS 0.17%
  • Veröffentlicht 12.03.2020 00:15:18
  • Zuletzt bearbeitet 21.11.2024 04:44:29

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.02(14). The destination buffer sp+0x440 is overflowed with the call to sprintf() for any ...

5.5

CVE-2019-5176

Exploit
  • EPSS 0.07%
  • Veröffentlicht 12.03.2020 00:15:18
  • Zuletzt bearbeitet 21.11.2024 04:44:29

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.02(14). An attacker can send a specially crafted packet to trigger the parsing of this ca...

7.8

CVE-2019-5171

Exploit
  • EPSS 0.23%
  • Veröffentlicht 12.03.2020 00:15:18
  • Zuletzt bearbeitet 21.11.2024 04:44:29

An exploitable command injection vulnerability exists in the iocheckd service ‘I/O-Check’ function of the WAGO PFC 200 Firmware version 03.02.02(14). An attacker can send specially crafted packet at 0x1ea48 to the extracted hostname value from the xm...