CVE-2026-3587

Summary

An unauthenticated remote attacker can exploit a hidden function in the CLI prompt to escape the restricted interface, leading to full compromise of the device.

Affected Software

VendorProductVersion RangeStatus
WAGOLean Managed Switch 852-18120.0.0 < V1.2.1.S0affected
WAGOLean Managed Switch 852-18130.0.0 < V1.2.1.S0affected
WAGOLean Managed Switch 852-1813-000-0010.0.0 < V1.2.3.S0affected
WAGOLean Managed Switch 852-18160.0.0 < V1.2.1.S0affected
WAGOIndustrial Managed Switch 852-3030.0.0 < V1.2.8.S0affected
WAGOIndustrial Managed Switch 852-13050.0.0 < V1.2.0.S0affected
WAGOIndustrial Managed Switch 852-1305-000-0010.0.0 < V1.2.0.S0affected
WAGOIndustrial Managed Switch 852-1505-000-0010.0.0 < V1.2.0.S0affected
WAGOIndustrial Managed Switch 852-15050.0.0 < V1.1.9.S0affected
WAGOIndustrial Managed Switch 852-6020.0.0 < V1.0.6.S0affected
WAGOIndustrial Managed Switch 852-6030.0.0 < V1.0.6.S0affected
WAGOIndustrial Managed Switch 852-16050.0.0 < V1.2.5.S0affected
WAGOLean Managed Switch 852-1812-010-0000.0.0 < V1.2.1.S0affected
WAGOLean Managed Switch 852-1813-010-0000.0.0 < V1.2.1.S0affected
WAGOLean Managed Switch 852-1816-010-0000.0.0 < V1.2.1.S0affected
WAGOLean Managed Switch 852-1813/010-0010.0.0 < V1.2.1.S0affected

Weaknesses

  • CWE-912: CWE-912 Hidden Functionality

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References