Headline

CVE-2023-3379: VDE-2023-015 | CERT@VDE

Wago web-based management of multiple products has a vulnerability which allows an local authenticated attacker to change the passwords of other non-admin users and thus to escalate non-root privileges.

1 year ago

CVE

Open in Source

#vulnerability #web #auth

2023-11-20 08:00 (CET) VDE-2023-015

WAGO: Improper privilege management in web-based management
Share: Email | Twitter

Published

2023-11-20 08:00 (CET)

Last update

2023-11-16 11:53 (CET)

Vendor(s)

WAGO GmbH & Co. KG

Product(s)

Article No°

Product Name

Affected Version(s)

751-9301/xxx-xxx

Compact Controller 100

<= FW25

752-8303/8000-002

Edge Controller

<= FW25

750-810x/xxx-xxx

PFC100

<= FW22 Patch1

750-821x/xxx-xxx

PFC200

<= FW25

750-820x/xxx-xxx

PFC200

<= FW22 Patch1

762-5xxx

Touch Panel 600 Advanced Line

<= FW25

762-6xxx

Touch Panel 600 Marine Line

<= FW25

762-4xxx

Touch Panel 600 Standard Line

<= FW25

Summary

There is a misconfiguration of access rights to a configuration tool of the web-based-management for a specific user, which allows to reset passwords of other users (except root). This allows an authenticated attacker to elevate his privileges.

CVE ID

Last Update:

Sept. 22, 2023, 12:45 p.m.

Severity

Weakness

Improper Privilege Management (CWE-269)

Summary

Details

Impact

An authenticated attacker can get further privileges allowing the attacker to change configuration and perform actions beyond the original user scope.

Solution

Mitigation