CVE-2023-1150
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
Uncontrolled resource consumption in Series WAGO 750-3x/-8x products may allow an unauthenticated remote attacker to DoS the MODBUS server with specially crafted packets.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| WAGO | 750-332 | 0 <= FW10 | affected |
| WAGO | 750-362/xxx-xxx | 0 <= FW10 | affected |
| WAGO | 750-363/xxx-xxx | 0 <= FW10 | affected |
| WAGO | 750-364/xxx-xxx | 0 <= FW10 | affected |
| WAGO | 750-365/xxx-xxx | 0 <= FW10 | affected |
| WAGO | 750-823 | 0 <= FW10 | affected |
| WAGO | 750-832/xxx-xxx | 0 <= FW10 | affected |
| WAGO | 750-862 | 0 <= FW10 | affected |
| WAGO | 750-890/xxx-xxx | 0 <= FW10 | affected |
| WAGO | 750-891 | 0 <= FW10 | affected |
| WAGO | 750-893 | 0 <= FW10 | affected |
Weaknesses
- CWE-772: CWE-772 Missing Release of Resource after Effective Lifetime
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.