CVE-2019-10712

{"id": "CVE-2019-10712", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2019-05-07T22:29:00.207", "references": [{"url": "http://www.securityfocus.com/bid/108482", "source": "cve@mitre.org"}, {"url": "https://cert.vde.com/de-de/advisories/vde-2019-008", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://lists.apache.org/thread.html/r0066c1e862613de402fee04e81cbe00bcd64b64a2711beb9a13c3b25%40%3Ccommits.cassandra.apache.org%3E", "source": "cve@mitre.org"}, {"url": "https://lists.apache.org/thread.html/r25e25973e9577c62fd0221b4b52990851adf11cbe33036bd67d4b13d%40%3Ccommits.cassandra.apache.org%3E", "source": "cve@mitre.org"}, {"url": "https://lists.apache.org/thread.html/r37eb6579fa0bf94a72b6c978e2fee96f68a2b1b3ac1b1ce60aee86cf%40%3Ccommits.cassandra.apache.org%3E", "source": "cve@mitre.org"}, {"url": "https://lists.apache.org/thread.html/r386966780034aadee69ffd82d44555117c9339545b9ce990fe490a3e%40%3Ccommits.cassandra.apache.org%3E", "source": "cve@mitre.org"}, {"url": "https://lists.apache.org/thread.html/r80e8882c86c9c17a57396a5ef7c4f08878d629a0291243411be0de3a%40%3Ccommits.cassandra.apache.org%3E", "source": "cve@mitre.org"}, {"url": "https://lists.apache.org/thread.html/ra37700b842790883b9082e6b281fb7596f571b13078a4856cd38f2c2%40%3Ccommits.cassandra.apache.org%3E", "source": "cve@mitre.org"}, {"url": "https://lists.apache.org/thread.html/rb47911c179c9f3e8ea3f134b5645e63cd20c6fc63bd0b43ab5864bd1%40%3Ccommits.cassandra.apache.org%3E", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/108482", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://cert.vde.com/de-de/advisories/vde-2019-008", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.apache.org/thread.html/r0066c1e862613de402fee04e81cbe00bcd64b64a2711beb9a13c3b25%40%3Ccommits.cassandra.apache.org%3E", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.apache.org/thread.html/r25e25973e9577c62fd0221b4b52990851adf11cbe33036bd67d4b13d%40%3Ccommits.cassandra.apache.org%3E", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.apache.org/thread.html/r37eb6579fa0bf94a72b6c978e2fee96f68a2b1b3ac1b1ce60aee86cf%40%3Ccommits.cassandra.apache.org%3E", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.apache.org/thread.html/r386966780034aadee69ffd82d44555117c9339545b9ce990fe490a3e%40%3Ccommits.cassandra.apache.org%3E", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.apache.org/thread.html/r80e8882c86c9c17a57396a5ef7c4f08878d629a0291243411be0de3a%40%3Ccommits.cassandra.apache.org%3E", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.apache.org/thread.html/ra37700b842790883b9082e6b281fb7596f571b13078a4856cd38f2c2%40%3Ccommits.cassandra.apache.org%3E", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.apache.org/thread.html/rb47911c179c9f3e8ea3f134b5645e63cd20c6fc63bd0b43ab5864bd1%40%3Ccommits.cassandra.apache.org%3E", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-798"}]}], "descriptions": [{"lang": "en", "value": "The Web-GUI on WAGO Series 750-88x (750-330, 750-352, 750-829, 750-831, 750-852, 750-880, 750-881, 750-882, 750-884, 750-885, 750-889) and Series 750-87x (750-830, 750-849, 750-871, 750-872, 750-873) devices has undocumented service access."}, {"lang": "es", "value": "Los dispositivos Web-GUI de las series 750-88x (750-330, 750-352, 750-829, 750-831, 750-852, 750-880, 750-881, 750-882, 750-884, 750-885, 750-889) y 750-87x (750-830, 750-849, 750-871, 750-872, 750-873) de WAGO disponen de acceso a servicios no documentados."}], "lastModified": "2024-11-21T04:19:47.313", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-830_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0BBF6F1C-BE8B-446F-9F88-EE663E87A837", "versionEndExcluding": "06"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-830:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "535D9B38-A7F3-47A8-9107-30BCB67AA38A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-849_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D001AA5F-B765-4B96-8FD4-1C2FF596609D", "versionEndExcluding": "08"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-849:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "408CF00F-D4F8-493C-B3F8-889E63E8EE9C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-871_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "076BEC2A-AA3E-4916-A5E1-304EAC6802FC", "versionEndExcluding": "11"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-871:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0CF67808-FAD2-4504-91AB-3545AC650053"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-872_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "34539AFB-A7AD-4684-9AEA-C9AC0CE3E06E", "versionEndExcluding": "07"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-872:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1071B49C-C632-4E24-84AD-D7921970369A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-873_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0284154D-CD73-42B2-9866-3145DBB5EDD9", "versionEndExcluding": "07"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-873:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B5B31C89-B021-4390-B50F-9D4DE9E80C71"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-330_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A79C49B6-7004-44BB-A74E-9349A0CB692E", "versionEndExcluding": "14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-330:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D1E75CD3-9934-44E2-8B43-D7490741AA27"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-352_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E001859-A338-43DA-877E-C43F57E7F9AD", "versionEndExcluding": "14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-352:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6C0865A4-6C89-4470-98E3-7E90BDF94D15"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-829_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AB2A6682-1879-4BA1-A253-2E0B386EC962", "versionEndExcluding": "14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-829:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F88F6E08-2D1B-4B34-B8DB-40292C0BBEB2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-831_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3631065F-27D6-4217-84EA-A8B40CC1F38F", "versionEndExcluding": "14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-831:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F0631884-FF6F-4AA9-9D76-CDECB5A738FC"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-852_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1E940C38-F03A-4D81-9AEA-C3CAC90916E8", "versionEndExcluding": "14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-852:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9D6739E1-EF0B-48EE-90FC-5708756FC362"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-880_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A5974664-66D9-45BC-8977-98E3CE1D282F", "versionEndExcluding": "14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-880:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CFEAC4D9-15CF-44B8-844D-C012AA4637A2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-881_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "72B66D0B-53CF-4018-831A-5A67CBA51B14", "versionEndExcluding": "14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-881:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6FE51647-62C1-4D3C-91FA-13ACA6CD71D2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-882_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7BC71AA4-B3F4-40AE-8BEF-C45FECF79359", "versionEndExcluding": "14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-882:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B1379D65-F376-4618-B708-5E59D64C8033"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-884_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B52C0C64-C91C-4B4C-80A7-CF19BC7CF15B", "versionEndExcluding": "14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-884:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "13E1FF30-AA64-4EEB-8A7E-E6C118BB638E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-885_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C479541-01CF-4CA6-B35F-80D6DC756AFE", "versionEndExcluding": "14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-885:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7712F56E-AEBA-4DE0-9172-26F3D29B369B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-889_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF2B7B07-532C-4D7B-B168-A9C3700EE8DD", "versionEndExcluding": "14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-889:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "57919AAB-2962-4543-810A-C143300351F8"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}