Details of VAR-202003-0677

ID

VAR-202003-0677

CVE

CVE-2019-5155

TITLE

WAGO PFC 200 Operating system command injection vulnerability

Trust: 1.6

sources: IVD: 5b9fb2ad-5f45-49d6-9bb3-38c388576359 // IVD: 0444e0cf-83e3-4c67-b00f-4904635fe6bd // CNVD: CNVD-2020-17495 // CNNVD: CNNVD-202003-334

DESCRIPTION

An exploitable command injection vulnerability exists in the cloud connectivity feature of WAGO PFC200. An attacker can inject operating system commands into any of the parameter values contained in the firmware update command. This affects WAGO PFC200 Firmware version 03.02.02(14), version 03.01.07(13), and version 03.00.39(12). WAGO PFC200 To OS A command injection vulnerability exists.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state. WAGO PFC 200 is a programmable logic controller (PLC) of the German WAGO company. The vulnerability stems from the fact that external input data constructs executable commands for the operating system, and the network system or product does not properly filter special characters and commands. Attackers can use this vulnerability to execute illegal operating system commands

Trust: 2.52

sources: NVD: CVE-2019-5155 // JVNDB: JVNDB-2019-014932 // CNVD: CNVD-2020-17495 // IVD: 5b9fb2ad-5f45-49d6-9bb3-38c388576359 // IVD: 0444e0cf-83e3-4c67-b00f-4904635fe6bd

IOT TAXONOMY

category:	['ICS', 'Network device']	sub_category:	-	Trust: 0.6
category:	['ICS']	sub_category:	-	Trust: 0.4

sources: IVD: 5b9fb2ad-5f45-49d6-9bb3-38c388576359 // IVD: 0444e0cf-83e3-4c67-b00f-4904635fe6bd // CNVD: CNVD-2020-17495

AFFECTED PRODUCTS

vendor:	wago	model:	pfc200	scope:	eq	version:	03.01.07(13)	Trust: 1.4
vendor:	wago	model:	pfc200	scope:	eq	version:	03.00.39(12)	Trust: 1.4
vendor:	wago	model:	pfc200	scope:	eq	version:	03.02.02(14)	Trust: 1.4
vendor:	wago	model:	pfc200	scope:	eq	version:	03.01.07\(13\)	Trust: 1.0
vendor:	wago	model:	pfc200	scope:	eq	version:	03.02.02\(14\)	Trust: 1.0
vendor:	wago	model:	pfc200	scope:	eq	version:	03.00.39\(12\)	Trust: 1.0
vendor:	pfc200	model:	-	scope:	eq	version:	03.00.39(12)	Trust: 0.4
vendor:	pfc200	model:	-	scope:	eq	version:	03.01.07(13)	Trust: 0.4
vendor:	pfc200	model:	-	scope:	eq	version:	03.02.02(14)	Trust: 0.4

sources: IVD: 5b9fb2ad-5f45-49d6-9bb3-38c388576359 // IVD: 0444e0cf-83e3-4c67-b00f-4904635fe6bd // CNVD: CNVD-2020-17495 // JVNDB: JVNDB-2019-014932 // NVD: CVE-2019-5155

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-5155
value:	HIGH
Trust: 1.0
NVD:	JVNDB-2019-014932
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2020-17495
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-202003-334
value:	HIGH
Trust: 0.6
IVD:	5b9fb2ad-5f45-49d6-9bb3-38c388576359
value:	HIGH
Trust: 0.2
IVD:	0444e0cf-83e3-4c67-b00f-4904635fe6bd
value:	HIGH
Trust: 0.2

nvd@nist.gov:	CVE-2019-5155
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
NVD:	JVNDB-2019-014932
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
CNVD:	CNVD-2020-17495
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	5b9fb2ad-5f45-49d6-9bb3-38c388576359
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2
IVD:	0444e0cf-83e3-4c67-b00f-4904635fe6bd
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2

nvd@nist.gov:	CVE-2019-5155
baseSeverity:	HIGH
baseScore:	7.2
vectorString:	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.2
impactScore:	5.9
version:	3.1
Trust: 1.0
NVD:	JVNDB-2019-014932
baseSeverity:	HIGH
baseScore:	7.2
vectorString:	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: IVD: 5b9fb2ad-5f45-49d6-9bb3-38c388576359 // IVD: 0444e0cf-83e3-4c67-b00f-4904635fe6bd // CNVD: CNVD-2020-17495 // JVNDB: JVNDB-2019-014932 // CNNVD: CNNVD-202003-334 // NVD: CVE-2019-5155

PROBLEMTYPE DATA

problemtype:

CWE-78

Trust: 1.8

sources: JVNDB: JVNDB-2019-014932 // NVD: CVE-2019-5155

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202003-334

TYPE

operating system commend injection

Trust: 0.6

sources: CNNVD: CNNVD-202003-334

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-014932

PATCH

title:

Top Page

url:

https://www.wago.com/us/

Trust: 0.8

sources: JVNDB: JVNDB-2019-014932

EXTERNAL IDS

db:	NVD	id:	CVE-2019-5155	Trust: 3.4
db:	TALOS	id:	TALOS-2019-0948	Trust: 2.4
db:	CNVD	id:	CNVD-2020-17495	Trust: 1.0
db:	CNNVD	id:	CNNVD-202003-334	Trust: 1.0
db:	JVNDB	id:	JVNDB-2019-014932	Trust: 0.8
db:	IVD	id:	5B9FB2AD-5F45-49D6-9BB3-38C388576359	Trust: 0.2
db:	IVD	id:	0444E0CF-83E3-4C67-B00F-4904635FE6BD	Trust: 0.2

REFERENCES

url:	https://talosintelligence.com/vulnerability_reports/talos-2019-0948	Trust: 2.4
url:	https://nvd.nist.gov/vuln/detail/cve-2019-5155	Trust: 2.0
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-5155	Trust: 0.8

sources: CNVD: CNVD-2020-17495 // JVNDB: JVNDB-2019-014932 // CNNVD: CNNVD-202003-334 // NVD: CVE-2019-5155

SOURCES

db:	IVD	id:	5b9fb2ad-5f45-49d6-9bb3-38c388576359
db:	IVD	id:	0444e0cf-83e3-4c67-b00f-4904635fe6bd
db:	CNVD	id:	CNVD-2020-17495
db:	JVNDB	id:	JVNDB-2019-014932
db:	CNNVD	id:	CNNVD-202003-334
db:	NVD	id:	CVE-2019-5155

LAST UPDATE DATE

2024-11-23T22:55:16.352000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2020-17495	date:	2020-03-18T00:00:00
db:	JVNDB	id:	JVNDB-2019-014932	date:	2020-03-30T00:00:00
db:	CNNVD	id:	CNNVD-202003-334	date:	2020-03-18T00:00:00
db:	NVD	id:	CVE-2019-5155	date:	2024-11-21T04:44:27.340

SOURCES RELEASE DATE

db:	IVD	id:	5b9fb2ad-5f45-49d6-9bb3-38c388576359	date:	2020-03-09T00:00:00
db:	IVD	id:	0444e0cf-83e3-4c67-b00f-4904635fe6bd	date:	2020-03-09T00:00:00
db:	CNVD	id:	CNVD-2020-17495	date:	2020-03-18T00:00:00
db:	JVNDB	id:	JVNDB-2019-014932	date:	2020-03-30T00:00:00
db:	CNNVD	id:	CNNVD-202003-334	date:	2020-03-09T00:00:00
db:	NVD	id:	CVE-2019-5155	date:	2020-03-11T22:27:40.753