CVE-2022-3281
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Summary
WAGO Series PFC100/PFC200, Series Touch Panel 600, Compact Controller CC100 and Edge Controller in multiple versions are prone to a loss of MAC-Address-Filtering after reboot. This may allow an remote attacker to circumvent the reach the network that should be protected by the MAC address filter.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| WAGO | 750-81xx/xxx-xxx Series PFC100/PFC200 | 03.01.07(13) <= 03.10.08(22) | affected |
| WAGO | 750-8217/xxx-xxx Series PFC100/PFC200 | 03.04.10(16) <= 03.10.08(22) | affected |
| WAGO | 750-82xx/xxx-xxx Series PFC100/PFC200 | 03.01.07(13) <= 03.10.08(22) | affected |
| WAGO | Compact Controller CC100 | 03.07.17(19) <= 03.09.08(21) | affected |
| WAGO | 762-4xxx Series Touch Panel 600 | 03.01.07(13) <= 03.10.09(22) | affected |
| WAGO | 762-5xxx Series Touch Panel 600 | 03.01.07(13) <= 03.10.09(22) | affected |
| WAGO | 762-6xxx Series Touch Panel 600 | 03.01.07(13) <= 03.10.09(22) | affected |
| WAGO | 752-8303/8000-002 Edge Controller | 03.06.09(18) <= 03.10.09(22) | affected |
Weaknesses
- CWE-440: CWE-440 Expected Behavior Violation
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.