Vulnerabilities > Wago > Pfc100
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-11 | CVE-2019-5149 | Resource Exhaustion vulnerability in Wago Pfc100 Firmware and Pfc200 Firmware The WBM web application on firmwares prior to 03.02.02 and 03.01.07 on the WAGO PFC100 and PFC2000, respectively, runs on a lighttpd web server and makes use of the FastCGI module, which is intended to provide high performance for all Internet applications without the penalties of Web server APIs. | 5.0 |
| 2020-03-11 | CVE-2019-5134 | Unspecified vulnerability in Wago Pfc100 Firmware and Pfc200 Firmware An exploitable regular expression without anchors vulnerability exists in the Web-Based Management (WBM) authentication functionality of WAGO PFC200 versions 03.00.39(12) and 03.01.07(13), and WAGO PFC100 version 03.00.39(12). | 5.0 |
| 2020-01-08 | CVE-2019-5082 | Out-of-bounds Write vulnerability in Wago Pfc100 Firmware and Pfc200 Firmware An exploitable heap buffer overflow vulnerability exists in the iocheckd service I/O-Check functionality of WAGO PFC200 Firmware version 03.01.07(13), WAGO PFC200 Firmware version 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). | 7.5 |