CVE-2023-1150

HIGH

Wago 750-363/040-000 Firmware < fw11 - Resource Leak

Title source: rule

Description

Uncontrolled resource consumption in Series WAGO 750-3x/-8x products may allow an unauthenticated remote attacker to DoS the MODBUS server with specially crafted packets.

References (1)

[Third Party Advisory] https://cert.vde.com/en/advisories/VDE-2023-005/

Scores

CVSS v3 7.5

EPSS 0.0020

EPSS Percentile 42.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-772

Status published

Affected Products (18)

wago/750-363\/040-000_firmware < fw11

wago/750-362\/040-000_firmware < fw11

wago/750-362\/000-001_firmware < fw11

wago/750-891_firmware < fw11

wago/750-365\/040-010_firmware < fw11

wago/750-364\/040-010_firmware < fw11

wago/750-362_firmware < fw11

wago/750-363_firmware < fw11

wago/750-823_firmware < fw11

wago/750-832_firmware < fw11

wago/750-832\/000-002_firmware < fw11

wago/750-862_firmware < fw11

wago/750-890_firmware < fw11

wago/750-890\/025-000_firmware < fw11

wago/750-890\/025-001_firmware < fw11

... and 3 more

Timeline

Published Jun 26, 2023

Tracked Since Feb 18, 2026