First published: Tue Mar 10 2020(Updated: )
An exploitable remote code execution vulnerability exists in the Cloud Connectivity functionality of WAGO PFC200 versions 03.02.02(14), 03.01.07(13), and 03.00.39(12). A specially crafted XML file will direct the Cloud Connectivity service to download and execute a shell script with root privileges.
Credit: talos-cna@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
WAGO PFC200 Firmware | =03.00.39\(12\) | |
WAGO PFC200 Firmware | =03.01.07\(13\) | |
WAGO PFC200 Firmware | =03.02.02\(14\) | |
WAGO PFC200 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-5161 is an exploitable remote code execution vulnerability in the Cloud Connectivity functionality of WAGO PFC200 versions 03.02.02(14), 03.01.07(13), and 03.00.39(12).
CVE-2019-5161 can be exploited by using a specially crafted XML file to direct the Cloud Connectivity service to download and execute a shell script with root privileges.
The severity of CVE-2019-5161 is critical with a CVSS score of 9.1.
WAGO PFC200 firmware versions 03.00.39(12), 03.01.07(13), and 03.02.02(14) are affected by CVE-2019-5161.
To fix CVE-2019-5161, it is recommended to update the WAGO PFC200 firmware to a version that is not vulnerable.