CVE-2021-21001

{"id": "CVE-2021-21001", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Secondary", "source": "info@cert.vde.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 2.3}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2021-05-24T11:15:07.980", "references": [{"url": "https://cert.vde.com/en-us/advisories/vde-2021-014", "tags": ["Third Party Advisory"], "source": "info@cert.vde.com"}, {"url": "https://cert.vde.com/en-us/advisories/vde-2021-014", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "info@cert.vde.com", "description": [{"lang": "en", "value": "CWE-22"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "On WAGO PFC200 devices in different firmware versions with special crafted packets an authorised attacker with network access to the device can access the file system with higher privileges."}, {"lang": "es", "value": "En los dispositivos WAGO PFC200 en diferentes versiones de firmware con paquetes especiales dise\u00f1ados, un atacante autorizado con acceso de red al dispositivo puede acceder al sistema de archivos con mayores privilegios"}], "lastModified": "2024-11-21T05:47:22.780", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-823_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CCE00E32-0C93-47A2-9F61-7859F72ABAED", "versionEndIncluding": "fw07"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-823:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CB88572A-CB05-4B52-8BFC-05EFDC819244"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-829_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D2D044CF-8637-4AE2-8163-938F206B8F76", "versionEndIncluding": "fw14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-829:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F88F6E08-2D1B-4B34-B8DB-40292C0BBEB2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-831_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "92234A0B-245B-4A5A-8346-25116F3D6290", "versionEndIncluding": "fw14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-831:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F0631884-FF6F-4AA9-9D76-CDECB5A738FC"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-832_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BF453C12-31A1-415B-BFAD-3354FE93C156", "versionEndIncluding": "fw06"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-832:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "13D1FA8D-C8BA-4D1C-8372-DECD40177631"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-852_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "52B9F4C0-93D4-493A-8A45-F60DF4C00E72", "versionEndIncluding": "fw14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-852:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9D6739E1-EF0B-48EE-90FC-5708756FC362"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-862_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63A9D182-2CF5-4137-AACF-36B760B18A20", "versionEndIncluding": "fw07"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-862:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FA04FBFB-9E1C-4618-9FDC-70675506D8D5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-880_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84D457F2-6B9A-43B2-A443-53C131201411", "versionEndIncluding": "fw15"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-880:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CFEAC4D9-15CF-44B8-844D-C012AA4637A2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-881_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1370434F-903B-4328-B3B2-ACD80D50F607", "versionEndIncluding": "fw14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-881:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6FE51647-62C1-4D3C-91FA-13ACA6CD71D2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-882_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5B797290-2B15-4822-9A47-098A97D02CEB", "versionEndIncluding": "fw14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-882:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B1379D65-F376-4618-B708-5E59D64C8033"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-885_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "93B3081B-7010-4480-B298-6806AC93491C", "versionEndIncluding": "fw14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-885:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7712F56E-AEBA-4DE0-9172-26F3D29B369B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-889_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D6505E3D-C983-48FF-AF17-99200EA464F4", "versionEndIncluding": "fw14"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-889:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "57919AAB-2962-4543-810A-C143300351F8"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-890_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B30607F-D417-4EB7-B00B-3E4A00BDFDA8", "versionEndIncluding": "fw07"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-890:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "11751A8B-FCFD-433B-9065-B4FC85168A93"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-891_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6F3010D6-1319-4458-B4B1-C7470B3950F9", "versionEndIncluding": "fw07"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-891:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "22BAABD9-A10D-4904-AA02-C37C4490B47A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-893_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5D636186-A586-4A4E-ACFC-5BCB2E4F7484", "versionEndIncluding": "fw07"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-893:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4D4795D0-B90B-4643-8713-88D89172D1A5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-8202_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "03675DC5-0563-4742-90F1-85CCE629157E", "versionEndExcluding": "03.06.19_\\(18\\)"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-8202:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "23B02096-81A5-4823-94F3-D87F389397DE"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-8203_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E8178F4C-BD4B-4E22-95F9-5264FD29E557", "versionEndExcluding": "03.06.19_\\(18\\)"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-8203:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EC428EC8-532A-4825-BCE3-C42A4BC01C68"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-8204_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9FC5F373-F17C-441A-AB86-F22D624E744E", "versionEndExcluding": "03.06.19_\\(18\\)"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-8204:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7AF14BE1-1EB5-423B-9FE7-E401AEF92553"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-8206_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C723A05-DC44-4F43-BEC2-EAD27E68804B", "versionEndExcluding": "03.06.19_\\(18\\)"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-8206:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2E17ECC4-D7AE-485C-A2EF-4148817F9DB8"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-8207_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "40789CA2-C91E-4510-A759-51C01A86C3F2", "versionEndExcluding": "03.06.19_\\(18\\)"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-8207:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DA98A0D9-B050-430B-96C5-15932438FD3A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-8208_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EDE72D10-8E25-4939-9255-23E8FED88449", "versionEndExcluding": "03.06.19_\\(18\\)"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-8208:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C86098FC-E63E-4676-8BA1-ADCA30795558"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-8210_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6ED56607-5CA6-47F5-8C2A-AEF69CB4A9F7", "versionEndExcluding": "03.06.19_\\(18\\)"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-8210:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1E11758B-46C3-4E57-943A-C9C073AE5211"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-8211_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D0E03C56-1319-4EE2-BF99-A4BA861D8381", "versionEndExcluding": "03.06.19_\\(18\\)"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-8211:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5CD6B267-3E4B-4597-82A6-130D6F21C728"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-8212_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2343C5B1-4905-405B-ACD7-375C31FC6C9A", "versionEndExcluding": "03.06.19_\\(18\\)"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-8212:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "20BBC380-0F6E-4400-93AF-5B6CFEF00562"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-8213_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E486580C-8400-4235-A617-8DBF4F65F31D", "versionEndExcluding": "03.06.19_\\(18\\)"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-8213:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4969E8EB-EF09-47B9-8F03-37BB87CFD048"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-8214_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3DE5D039-B7BA-4876-9B3B-B41CCA778A98", "versionEndExcluding": "03.06.19_\\(18\\)"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-8214:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "979A8E43-4285-4A7B-BB0B-E6888117862C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-8216_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F2AA067-9AA9-4D52-B609-C77CAD71CD33", "versionEndExcluding": "03.06.19_\\(18\\)"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-8216:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3B854F74-173E-4523-BBA7-8FF7A9B9880E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:wago:750-8217_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A8032A39-1795-4AB0-9822-8A16EFFD1AE0", "versionEndExcluding": "03.06.19_\\(18\\)"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:wago:750-8217:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B23CD8FD-FC7A-4E24-BF8F-648478D82645"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "info@cert.vde.com"}