Vulnerabilities > CVE-2015-6472 - Credentials Management vulnerability in Wago products

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
wago
CWE-255
critical

Summary

WAGO IO 750-849 01.01.27 and 01.02.05, WAGO IO 750-881, and WAGO IO 758-870 have weak credential management.

Common Weakness Enumeration (CWE)

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/136077/wago-credsprivdisclose.txt
idPACKETSTORM:136077
last seen2016-12-05
published2016-03-04
reporterKarn Ganeshen
sourcehttps://packetstormsecurity.com/files/136077/WAGO-IO-PLC-758-870-750-849-Credential-Management-Privilege-Separation.html
titleWAGO IO PLC 758-870 / 750-849 Credential Management / Privilege Separation