CVE-2019-10712

The Web-GUI on WAGO Series 750-88x (750-330, 750-352, 750-829, 750-831, 750-852, 750-880, 750-881, 750-882, 750-884, 750-885, 750-889) and Series 750-87x (750-830, 750-849, 750-871, 750-872, 750-873) devices has undocumented service access.
References
Link Resource
http://www.securityfocus.com/bid/108482
https://cert.vde.com/de-de/advisories/vde-2019-008 Third Party Advisory
https://lists.apache.org/thread.html/r0066c1e862613de402fee04e81cbe00bcd64b64a2711beb9a13c3b25%40%3Ccommits.cassandra.apache.org%3E
https://lists.apache.org/thread.html/r25e25973e9577c62fd0221b4b52990851adf11cbe33036bd67d4b13d%40%3Ccommits.cassandra.apache.org%3E
https://lists.apache.org/thread.html/r37eb6579fa0bf94a72b6c978e2fee96f68a2b1b3ac1b1ce60aee86cf%40%3Ccommits.cassandra.apache.org%3E
https://lists.apache.org/thread.html/r386966780034aadee69ffd82d44555117c9339545b9ce990fe490a3e%40%3Ccommits.cassandra.apache.org%3E
https://lists.apache.org/thread.html/r80e8882c86c9c17a57396a5ef7c4f08878d629a0291243411be0de3a%40%3Ccommits.cassandra.apache.org%3E
https://lists.apache.org/thread.html/ra37700b842790883b9082e6b281fb7596f571b13078a4856cd38f2c2%40%3Ccommits.cassandra.apache.org%3E
https://lists.apache.org/thread.html/rb47911c179c9f3e8ea3f134b5645e63cd20c6fc63bd0b43ab5864bd1%40%3Ccommits.cassandra.apache.org%3E
http://www.securityfocus.com/bid/108482
https://cert.vde.com/de-de/advisories/vde-2019-008 Third Party Advisory
https://lists.apache.org/thread.html/r0066c1e862613de402fee04e81cbe00bcd64b64a2711beb9a13c3b25%40%3Ccommits.cassandra.apache.org%3E
https://lists.apache.org/thread.html/r25e25973e9577c62fd0221b4b52990851adf11cbe33036bd67d4b13d%40%3Ccommits.cassandra.apache.org%3E
https://lists.apache.org/thread.html/r37eb6579fa0bf94a72b6c978e2fee96f68a2b1b3ac1b1ce60aee86cf%40%3Ccommits.cassandra.apache.org%3E
https://lists.apache.org/thread.html/r386966780034aadee69ffd82d44555117c9339545b9ce990fe490a3e%40%3Ccommits.cassandra.apache.org%3E
https://lists.apache.org/thread.html/r80e8882c86c9c17a57396a5ef7c4f08878d629a0291243411be0de3a%40%3Ccommits.cassandra.apache.org%3E
https://lists.apache.org/thread.html/ra37700b842790883b9082e6b281fb7596f571b13078a4856cd38f2c2%40%3Ccommits.cassandra.apache.org%3E
https://lists.apache.org/thread.html/rb47911c179c9f3e8ea3f134b5645e63cd20c6fc63bd0b43ab5864bd1%40%3Ccommits.cassandra.apache.org%3E
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:wago:750-830_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-830:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:wago:750-849_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-849:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:wago:750-871_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-871:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:wago:750-872_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-872:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:wago:750-873_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-873:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:wago:750-330_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-330:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:wago:750-352_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-352:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:wago:750-829_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-829:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:wago:750-831_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-831:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:wago:750-852_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-852:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:wago:750-880_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-880:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:wago:750-881_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-881:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:wago:750-882_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-882:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:wago:750-884_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-884:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:wago:750-885_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-885:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:wago:750-889_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:wago:750-889:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:19

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/108482 - () http://www.securityfocus.com/bid/108482 -
References () https://cert.vde.com/de-de/advisories/vde-2019-008 - Third Party Advisory () https://cert.vde.com/de-de/advisories/vde-2019-008 - Third Party Advisory
References () https://lists.apache.org/thread.html/r0066c1e862613de402fee04e81cbe00bcd64b64a2711beb9a13c3b25%40%3Ccommits.cassandra.apache.org%3E - () https://lists.apache.org/thread.html/r0066c1e862613de402fee04e81cbe00bcd64b64a2711beb9a13c3b25%40%3Ccommits.cassandra.apache.org%3E -
References () https://lists.apache.org/thread.html/r25e25973e9577c62fd0221b4b52990851adf11cbe33036bd67d4b13d%40%3Ccommits.cassandra.apache.org%3E - () https://lists.apache.org/thread.html/r25e25973e9577c62fd0221b4b52990851adf11cbe33036bd67d4b13d%40%3Ccommits.cassandra.apache.org%3E -
References () https://lists.apache.org/thread.html/r37eb6579fa0bf94a72b6c978e2fee96f68a2b1b3ac1b1ce60aee86cf%40%3Ccommits.cassandra.apache.org%3E - () https://lists.apache.org/thread.html/r37eb6579fa0bf94a72b6c978e2fee96f68a2b1b3ac1b1ce60aee86cf%40%3Ccommits.cassandra.apache.org%3E -
References () https://lists.apache.org/thread.html/r386966780034aadee69ffd82d44555117c9339545b9ce990fe490a3e%40%3Ccommits.cassandra.apache.org%3E - () https://lists.apache.org/thread.html/r386966780034aadee69ffd82d44555117c9339545b9ce990fe490a3e%40%3Ccommits.cassandra.apache.org%3E -
References () https://lists.apache.org/thread.html/r80e8882c86c9c17a57396a5ef7c4f08878d629a0291243411be0de3a%40%3Ccommits.cassandra.apache.org%3E - () https://lists.apache.org/thread.html/r80e8882c86c9c17a57396a5ef7c4f08878d629a0291243411be0de3a%40%3Ccommits.cassandra.apache.org%3E -
References () https://lists.apache.org/thread.html/ra37700b842790883b9082e6b281fb7596f571b13078a4856cd38f2c2%40%3Ccommits.cassandra.apache.org%3E - () https://lists.apache.org/thread.html/ra37700b842790883b9082e6b281fb7596f571b13078a4856cd38f2c2%40%3Ccommits.cassandra.apache.org%3E -
References () https://lists.apache.org/thread.html/rb47911c179c9f3e8ea3f134b5645e63cd20c6fc63bd0b43ab5864bd1%40%3Ccommits.cassandra.apache.org%3E - () https://lists.apache.org/thread.html/rb47911c179c9f3e8ea3f134b5645e63cd20c6fc63bd0b43ab5864bd1%40%3Ccommits.cassandra.apache.org%3E -

Information

Published : 2019-05-07 22:29

Updated : 2024-11-21 04:19


NVD link : CVE-2019-10712

Mitre link : CVE-2019-10712

CVE.ORG link : CVE-2019-10712


JSON object : View

Products Affected

wago

  • 750-330_firmware
  • 750-330
  • 750-882_firmware
  • 750-871_firmware
  • 750-885
  • 750-880
  • 750-885_firmware
  • 750-830_firmware
  • 750-852_firmware
  • 750-873
  • 750-829
  • 750-871
  • 750-882
  • 750-831
  • 750-352_firmware
  • 750-849_firmware
  • 750-880_firmware
  • 750-352
  • 750-889
  • 750-872_firmware
  • 750-884
  • 750-873_firmware
  • 750-881
  • 750-884_firmware
  • 750-830
  • 750-872
  • 750-889_firmware
  • 750-829_firmware
  • 750-849
  • 750-852
  • 750-831_firmware
  • 750-881_firmware
CWE
CWE-798

Use of Hard-coded Credentials