A CORS Misconfiguration in the web-based management allows a malicious third party webserver to misuse all basic information pages on the webserver. In combination with CVE-2022-45138 this could lead to disclosure of device information like CPU diagnostics. As there is just a limited amount of information readable the impact only affects a small subset of confidentiality.
AI analysis not yet available
Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
| Vendor | Product | Versions | Fixed In |
|---|---|---|---|
| wago | 751-9301_firmware | 16 - 22 | - |
| wago | 751-9301_firmware | - | - |
| wago | 751-9301_firmware | - |
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
21
Affected Products
2
References
wago / 751-9301_firmware
| - |
| wago | 752-8303\/8000-002_firmware | 18 - 22 | - |
| wago | 752-8303\/8000-002_firmware | - | - |
| wago | 752-8303\/8000-002_firmware | - | - |
| wago | pfc100_firmware | 16 - 22 | - |
| wago | pfc100_firmware | - | - |
| wago | pfc100_firmware | - | - |
| wago | pfc200_firmware | 16 - 22 | - |
| wago | pfc200_firmware | - | - |
| wago | pfc200_firmware | - | - |
| wago | touch_panel_600_advanced_firmware | 16 - 22 | - |
| wago | touch_panel_600_advanced_firmware | - | - |
| wago | touch_panel_600_advanced_firmware | - | - |
| wago | touch_panel_600_marine_firmware | 16 - 22 | - |
| wago | touch_panel_600_marine_firmware | - | - |
| wago | touch_panel_600_marine_firmware | - | - |
| wago | touch_panel_600_standard_firmware | 16 - 22 | - |
| wago | touch_panel_600_standard_firmware | - | - |
| wago | touch_panel_600_standard_firmware | - | - |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Exploitability
Impact