CVE-2018-8836

Published Apr 3, 2018

Last updated 3 days ago

CVSS medium 5.3

Overview

Description: Wago 750 Series PLCs with firmware version 10 and prior include a remote attack may take advantage of an improper implementation of the 3 way handshake during a TCP connection affecting the communications with commission and service tools. Specially crafted packets may also be sent to Port 2455/TCP/IP, used in Codesys management software, which may result in a denial-of-service condition of communications with commissioning and service tools.
Source: ics-cert@hq.dhs.gov
NVD status: Modified

Risk scores

CVSS 3.0

Type: Primary
Base score: 5.3
Impact score: 1.4
Exploitability score: 3.9
Vector string: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

ics-cert@hq.dhs.gov: CWE-404
nvd@nist.gov: CWE-404

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:wago:750-880_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D443B788-5E7F-4B07-ADCE-7B4A5F3D2CE6",
            "versionEndIncluding": "10"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:wago:750-880:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CFEAC4D9-15CF-44B8-844D-C012AA4637A2"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:wago:750-881_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "015AA9DF-8769-4053-984B-BFD884A80699",
            "versionEndIncluding": "10"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:wago:750-881:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6FE51647-62C1-4D3C-91FA-13ACA6CD71D2"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:wago:750-852_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4807A1D3-0154-4CA6-AAAC-DC4A0CCA2A96",
            "versionEndIncluding": "10"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:wago:750-852:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "9D6739E1-EF0B-48EE-90FC-5708756FC362"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:wago:750-882_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2FC244EF-D2FC-4C1C-AB48-690F5F48CBC8",
            "versionEndIncluding": "10"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:wago:750-882:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B1379D65-F376-4618-B708-5E59D64C8033"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:wago:750-885_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "51C795D3-6E76-4BDD-BE14-F81D2E2A90EC",
            "versionEndIncluding": "10"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:wago:750-885:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7712F56E-AEBA-4DE0-9172-26F3D29B369B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:wago:750-831_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D018BF5D-8BEA-4A4C-AA10-2CE7F11100BA",
            "versionEndIncluding": "10"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:wago:750-831:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F0631884-FF6F-4AA9-9D76-CDECB5A738FC"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:wago:750-889_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "442AF102-0892-4715-B23B-9343AC81F7C1",
            "versionEndIncluding": "10"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:wago:750-889:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "57919AAB-2962-4543-810A-C143300351F8"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:wago:750-829_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "08EE2328-5393-41AF-B27B-2666854A4274",
            "versionEndIncluding": "10"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:wago:750-829:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F88F6E08-2D1B-4B34-B8DB-40292C0BBEB2"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References