CVE编号
CVE-2019-10712利用情况
暂无补丁情况
N/A披露时间
2019-05-08漏洞描述
WAGO 750-88x系列上的Web-GUI(750-330,750-352,750-829,750-831,750-852,750-880,750-881,750-882,750-884,750-885 ,750-889)和750-87x系列(750-830,750-849,750-871,750-872,750-873)设备具有未记录的服务访问。解决建议
厂商已发布了漏洞修复程序,请及时关注更新:https://www.wago.com/de/download/public/Sicherheitshinweis-SA-SYS-2019-001/SA-SYS-2019-001.pdf
参考链接 |
|
|---|---|
| http://www.securityfocus.com/bid/108482 | |
| https://cert.vde.com/de-de/advisories/vde-2019-008 | |
| https://lists.apache.org/thread.html/r0066c1e862613de402fee04e81cbe00bcd64b64... | |
| https://lists.apache.org/thread.html/r25e25973e9577c62fd0221b4b52990851adf11c... | |
| https://lists.apache.org/thread.html/r37eb6579fa0bf94a72b6c978e2fee96f68a2b1b... | |
| https://lists.apache.org/thread.html/r386966780034aadee69ffd82d44555117c93395... | |
| https://lists.apache.org/thread.html/r80e8882c86c9c17a57396a5ef7c4f08878d629a... | |
| https://lists.apache.org/thread.html/ra37700b842790883b9082e6b281fb7596f571b1... | |
| https://lists.apache.org/thread.html/rb47911c179c9f3e8ea3f134b5645e63cd20c6fc... |
受影响软件情况
| # | 类型 | 厂商 | 产品 | 版本 | 影响面 | ||||
| 1 | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-330_firmware | * |
Up to (excluding) 14 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-352_firmware | * |
Up to (excluding) 14 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-829_firmware | * |
Up to (excluding) 14 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-830_firmware | * |
Up to (excluding) 06 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-831_firmware | * |
Up to (excluding) 14 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-849_firmware | * |
Up to (excluding) 08 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-852_firmware | * |
Up to (excluding) 14 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-871_firmware | * |
Up to (excluding) 11 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-872_firmware | * |
Up to (excluding) 07 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-873_firmware | * |
Up to (excluding) 07 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-880_firmware | * |
Up to (excluding) 14 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-881_firmware | * |
Up to (excluding) 14 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-882_firmware | * |
Up to (excluding) 14 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-884_firmware | * |
Up to (excluding) 14 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-885_firmware | * |
Up to (excluding) 14 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | wago | 750-889_firmware | * |
Up to (excluding) 14 |
|||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-330 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-352 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-829 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-830 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-831 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-849 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-852 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-871 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-872 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-873 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-880 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-881 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-882 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-884 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-885 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | wago | 750-889 | - | - | |||||
- 攻击路径 网络
- 攻击复杂度 低
- 权限要求 无
- 影响范围 未更改
- 用户交互 无
- 可用性 高
- 保密性 高
- 完整性 高
还没有评论,来说两句吧...