CVE-2019-10712
high-risk
Published 2019-05-07
The Web-GUI on WAGO Series 750-88x (750-330, 750-352, 750-829, 750-831, 750-852, 750-880, 750-881, 750-882, 750-884, 750-885, 750-889) and Series 750-87x (750-830, 750-849, 750-871, 750-872, 750-873) devices has undocumented service access.
Do I need to act?
~
1.4% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10
Critical
NETWORK
/ LOW complexity
Affected Products (16)
750-830 Firmware
750-849 Firmware
750-871 Firmware
750-872 Firmware
750-873 Firmware
750-330 Firmware
750-352 Firmware
750-884 Firmware
Affected Vendors
References (18)
Third Party Advisory
https://cert.vde.com/de-de/advisories/vde-2019-008
Third Party Advisory
https://cert.vde.com/de-de/advisories/vde-2019-008
54
/ 100
high-risk
Severity
32/34 · Critical
Exploitability
4/34 · Minimal
Exposure
18/34 · Moderate