CVE-2021-21001
CRITICALWAGO PFC200 Firmware - Authenticated Path Traversal
Title source: llmDescription
On WAGO PFC200 devices in different firmware versions with special crafted packets an authorised attacker with network access to the device can access the file system with higher privileges.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_confirm
https://cert.vde.com/en-us/advisories/vde-2021-014
Scores
CVSS v3
9.1
EPSS
0.0113
EPSS Percentile
62.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Details
CWE
CWE-22
Status
published
Products (27)
wago/750-8202_firmware
< 03.06.19_\(18\)
wago/750-8203_firmware
< 03.06.19_\(18\)
wago/750-8204_firmware
< 03.06.19_\(18\)
wago/750-8206_firmware
< 03.06.19_\(18\)
wago/750-8207_firmware
< 03.06.19_\(18\)
wago/750-8208_firmware
< 03.06.19_\(18\)
wago/750-8210_firmware
< 03.06.19_\(18\)
wago/750-8211_firmware
< 03.06.19_\(18\)
wago/750-8212_firmware
< 03.06.19_\(18\)
wago/750-8213_firmware
< 03.06.19_\(18\)
... and 17 more
Published
May 24, 2021
Tracked Since
Feb 18, 2026