CVE-2020-12522
CRITICALWAGO PFC 100, PFC 200, Touch Panel 600 Standard/Advanced/Marine < FW10 - Remote Code Execution
Title source: llmDescription
The reported vulnerability allows an attacker who has network access to the device to execute code with specially crafted packets in WAGO Series PFC 100 (750-81xx/xxx-xxx), Series PFC 200 (750-82xx/xxx-xxx), Series Wago Touch Panel 600 Standard Line (762-4xxx), Series Wago Touch Panel 600 Advanced Line (762-5xxx), Series Wago Touch Panel 600 Marine Line (762-6xxx) with firmware versions <=FW10.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_confirm
https://cert.vde.com/en-us/advisories/vde-2020-045
Scores
CVSS v3
10.0
EPSS
0.0293
EPSS Percentile
85.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Details
CWE
CWE-78
Status
published
Products (5)
wago/pfc_100_firmware
< 10
wago/pfc_200_firmware
< 10
wago/touch_panel_600_advanced_firmware
< 10
wago/touch_panel_600_marine_firmware
< 10
wago/touch_panel_600_standard_firmware
< 10
Published
Dec 17, 2020
Tracked Since
Feb 18, 2026