CVE-2020-12516: WAGO: PLC families 750-88x and 750-352 prone to DoS attack
First published: Thu Dec 10 2020(Updated: )
Older firmware versions (FW1 up to FW10) of the WAGO PLC family 750-88x and 750-352 are vulnerable for a special denial of service attack.
Credit: info@cert.vde.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| WAGO 750-352 | ||
| WAGO 750-831/xxx-xxx | ||
| WAGO 750-852 | ||
| WAGO 750-880/xxx-xxx | ||
| WAGO 750-881 | ||
| WAGO 750-889 | ||
| Wago 750-352 Firmware | >=fw1<=fw10 | |
| WAGO 750-352 | ||
| Wago 750-831 Firmware | >=fw1<=fw10 | |
| WAGO 750-831 | ||
| Wago 750-852 Firmware | >=fw1<=fw10 | |
| WAGO 750-852 | ||
| Wago 750-880 Firmware | >=fw1<=fw10 | |
| WAGO 750-880 | ||
| Wago 750-881 Firmware | >=fw1<=fw10 | |
| WAGO 750-881 | ||
| Wago 750-889 Firmware | >=fw1<=fw10 | |
| WAGO 750-889 | ||
| Wago 750-331 Firmware | >=fw1<=fw10 | |
| Wago 750-331 | ||
| Wago 750-829 Firmware | >=fw1<=fw10 | |
| Wago 750-829 | ||
| Wago 750-882 Firmware | >=fw1<=fw10 | |
| WAGO 750-882 | ||
| Wago 750-885 Firmware | >=fw1<=fw10 | |
| WAGO 750-885 |
Remedy
Update the device to the latest FW version.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2020-12516.
What is the severity of CVE-2020-12516?
The severity of CVE-2020-12516 is high with a CVSS score of 7.5.
Which WAGO PLC family versions are affected by CVE-2020-12516?
Older firmware versions (FW1 up to FW10) of the WAGO PLC family 750-88x and 750-352 are affected by CVE-2020-12516.
What is the impact of CVE-2020-12516?
CVE-2020-12516 can be exploited to carry out a special denial of service attack.
How can CVE-2020-12516 be fixed?
To fix CVE-2020-12516, users should update to a firmware version higher than FW10.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/weakness
- agent/author
- agent/title
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/description
- agent/severity
- agent/references
- agent/softwarecombine
- agent/tags
- collector/ics-cert-advisory
- source/ICS
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/wago
- canonical/wago 750-352
- canonical/wago 750-831/xxx-xxx
- canonical/wago 750-852
- canonical/wago 750-880/xxx-xxx
- canonical/wago 750-881
- canonical/wago 750-889
- canonical/wago 750-352 firmware
- version/wago 750-352 firmware/fw1
- version/wago 750-352 firmware/fw10
- canonical/wago 750-831 firmware
- version/wago 750-831 firmware/fw1
- version/wago 750-831 firmware/fw10
- canonical/wago 750-831
- canonical/wago 750-852 firmware
- version/wago 750-852 firmware/fw1
- version/wago 750-852 firmware/fw10
- canonical/wago 750-880 firmware
- version/wago 750-880 firmware/fw1
- version/wago 750-880 firmware/fw10
- canonical/wago 750-880
- canonical/wago 750-881 firmware
- version/wago 750-881 firmware/fw1
- version/wago 750-881 firmware/fw10
- canonical/wago 750-889 firmware
- version/wago 750-889 firmware/fw1
- version/wago 750-889 firmware/fw10
- canonical/wago 750-331 firmware
- version/wago 750-331 firmware/fw1
- version/wago 750-331 firmware/fw10
- canonical/wago 750-331
- canonical/wago 750-829 firmware
- version/wago 750-829 firmware/fw1
- version/wago 750-829 firmware/fw10
- canonical/wago 750-829
- canonical/wago 750-882 firmware
- version/wago 750-882 firmware/fw1
- version/wago 750-882 firmware/fw10
- canonical/wago 750-882
- canonical/wago 750-885 firmware
- version/wago 750-885 firmware/fw1
- version/wago 750-885 firmware/fw10
- canonical/wago 750-885