ByteOS Network

NVD Vulnerability Details :

CVE-2023-1150

Modified

Source-info@cert.vde.com

Published At-26 Jun, 2023 | 07:15

Updated At-02 Oct, 2024 | 06:15

Uncontrolled resource consumption in Series WAGO 750-3x/-8x products may allow an unauthenticated remote attacker to DoS the MODBUS server with specially crafted packets.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Type: Primary

Version: 3.1

Base score: 7.5

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CPE Matches

wago>>750-363\/040-000>>-

cpe:2.3:h:wago:750-363\/040-000:-:*:*:*:*:*:*:*

wago>>750-363\/040-000_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-363\/040-000_firmware:*:*:*:*:*:*:*:*

wago>>750-362\/040-000>>-

cpe:2.3:h:wago:750-362\/040-000:-:*:*:*:*:*:*:*

wago>>750-362\/040-000_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-362\/040-000_firmware:*:*:*:*:*:*:*:*

wago>>750-362\/000-001>>-

cpe:2.3:h:wago:750-362\/000-001:-:*:*:*:*:*:*:*

wago>>750-362\/000-001_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-362\/000-001_firmware:*:*:*:*:*:*:*:*

wago>>750-891>>-

cpe:2.3:h:wago:750-891:-:*:*:*:*:*:*:*

wago>>750-891_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-891_firmware:*:*:*:*:*:*:*:*

wago>>750-365\/040-010>>-

cpe:2.3:h:wago:750-365\/040-010:-:*:*:*:*:*:*:*

wago>>750-365\/040-010_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-365\/040-010_firmware:*:*:*:*:*:*:*:*

wago>>750-364\/040-010>>-

cpe:2.3:h:wago:750-364\/040-010:-:*:*:*:*:*:*:*

wago>>750-364\/040-010_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-364\/040-010_firmware:*:*:*:*:*:*:*:*

wago>>750-362>>-

cpe:2.3:h:wago:750-362:-:*:*:*:*:*:*:*

wago>>750-362_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-362_firmware:*:*:*:*:*:*:*:*

wago>>750-363>>-

cpe:2.3:h:wago:750-363:-:*:*:*:*:*:*:*

wago>>750-363_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-363_firmware:*:*:*:*:*:*:*:*

wago>>750-823_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-823_firmware:*:*:*:*:*:*:*:*

wago>>750-823>>-

cpe:2.3:h:wago:750-823:-:*:*:*:*:*:*:*

wago>>750-832_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-832_firmware:*:*:*:*:*:*:*:*

wago>>750-832>>-

cpe:2.3:h:wago:750-832:-:*:*:*:*:*:*:*

wago>>750-832\/000-002_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-832\/000-002_firmware:*:*:*:*:*:*:*:*

wago>>750-832\/000-002>>-

cpe:2.3:h:wago:750-832\/000-002:-:*:*:*:*:*:*:*

wago>>750-862_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-862_firmware:*:*:*:*:*:*:*:*

wago>>750-862>>-

cpe:2.3:h:wago:750-862:-:*:*:*:*:*:*:*

wago>>750-890_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-890_firmware:*:*:*:*:*:*:*:*

wago>>750-890>>-

cpe:2.3:h:wago:750-890:-:*:*:*:*:*:*:*

wago>>750-890\/025-000_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-890\/025-000_firmware:*:*:*:*:*:*:*:*

wago>>750-890\/025-000>>-

cpe:2.3:h:wago:750-890\/025-000:-:*:*:*:*:*:*:*

wago>>750-890\/025-001_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-890\/025-001_firmware:*:*:*:*:*:*:*:*

wago>>750-890\/025-001>>-

cpe:2.3:h:wago:750-890\/025-001:-:*:*:*:*:*:*:*

wago>>750-890\/025-002_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-890\/025-002_firmware:*:*:*:*:*:*:*:*

wago>>750-890\/025-002>>-

cpe:2.3:h:wago:750-890\/025-002:-:*:*:*:*:*:*:*

wago>>750-890\/040-000_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-890\/040-000_firmware:*:*:*:*:*:*:*:*

wago>>750-890\/040-000>>-

cpe:2.3:h:wago:750-890\/040-000:-:*:*:*:*:*:*:*

wago>>750-893_firmware>>Versions before fw11(exclusive)

cpe:2.3:o:wago:750-893_firmware:*:*:*:*:*:*:*:*

wago>>750-893>>-

cpe:2.3:h:wago:750-893:-:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-772	Primary	info@cert.vde.com

CWE ID: CWE-772

Type: Primary

Source: info@cert.vde.com

References

Hyperlink	Source	Resource
https://cert.vde.com/en/advisories/VDE-2023-005/	info@cert.vde.com	Third Party Advisory

Hyperlink: https://cert.vde.com/en/advisories/VDE-2023-005/

Source: info@cert.vde.com

Resource:

Third Party Advisory

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History