Product:

0852\-1305_firmware

(Wago)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 6
Date Id Summary Products Score Patch Annotated
2021-05-13 CVE-2021-20993 In multiple managed switches by WAGO in different versions the activated directory listing provides an attacker with the index of the resources located inside the directory. 0852\-0303_firmware, 0852\-1305\/000\-001_firmware, 0852\-1305_firmware, 0852\-1505\/000\-001_firmware, 0852\-1505_firmware 5.3
2021-05-13 CVE-2021-20994 In multiple managed switches by WAGO in different versions an attacker may trick a legitimate user to click a link to inject possible malicious code into the Web-Based Management. 0852\-0303_firmware, 0852\-1305\/000\-001_firmware, 0852\-1305_firmware, 0852\-1505\/000\-001_firmware, 0852\-1505_firmware 6.1
2021-05-13 CVE-2021-20995 In multiple managed switches by WAGO in different versions the webserver cookies of the web based UI contain user credentials. 0852\-0303_firmware, 0852\-1305\/000\-001_firmware, 0852\-1305_firmware, 0852\-1505\/000\-001_firmware, 0852\-1505_firmware 7.5
2021-05-13 CVE-2021-20996 In multiple managed switches by WAGO in different versions special crafted requests can lead to cookies being transferred to third parties. 0852\-0303_firmware, 0852\-1305\/000\-001_firmware, 0852\-1305_firmware, 0852\-1505\/000\-001_firmware, 0852\-1505_firmware 5.3
2021-05-13 CVE-2021-20997 In multiple managed switches by WAGO in different versions it is possible to read out the password hashes of all Web-based Management users. 0852\-0303_firmware, 0852\-1305\/000\-001_firmware, 0852\-1305_firmware, 0852\-1505\/000\-001_firmware, 0852\-1505_firmware 7.5
2021-05-13 CVE-2021-20998 In multiple managed switches by WAGO in different versions without authorization and with specially crafted packets it is possible to create users. 0852\-0303_firmware, 0852\-1305\/000\-001_firmware, 0852\-1305_firmware, 0852\-1505\/000\-001_firmware, 0852\-1505_firmware 9.8