Sign-up

ID

VAR-202003-0679


CVE

CVE-2019-5157


TITLE

WAGO PFC200 Operating system command injection vulnerability

Trust: 1.6

sources: IVD: d1247760-93c2-4ae9-ba70-2fc8d4a53208 // IVD: 5cdd007e-89b7-4f08-bcd5-f4121200efdd // CNVD: CNVD-2020-19518 // CNNVD: CNNVD-202003-371

DESCRIPTION

An exploitable command injection vulnerability exists in the Cloud Connectivity functionality of WAGO PFC200 Firmware versions 03.02.02(14), 03.01.07(13), and 03.00.39(12). An attacker can inject OS commands into the TimeoutUnconfirmed parameter value contained in the Firmware Update command. WAGO PFC 200 For firmware, OS A command injection vulnerability exists.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state. WAGO PFC 200 is a programmable logic controller (PLC) of the German WAGO company. The cloud connection function in WAGO PFC200 using firmware versions 03.02.02(14), 03.01.07(13), and 03.00.39(12) has an operating system command injection vulnerability that stems from external input data to construct an operating system executable During the command process, the network system or product does not properly filter the special characters, commands, etc., and the attacker can use the vulnerability to execute illegal operating system commands

Trust: 2.52

sources: NVD: CVE-2019-5157 // JVNDB: JVNDB-2019-014978 // CNVD: CNVD-2020-19518 // IVD: d1247760-93c2-4ae9-ba70-2fc8d4a53208 // IVD: 5cdd007e-89b7-4f08-bcd5-f4121200efdd

IOT TAXONOMY

category:['ICS', 'Network device']sub_category: -

Trust: 0.6

category:['ICS']sub_category: -

Trust: 0.4

sources: IVD: d1247760-93c2-4ae9-ba70-2fc8d4a53208 // IVD: 5cdd007e-89b7-4f08-bcd5-f4121200efdd // CNVD: CNVD-2020-19518

AFFECTED PRODUCTS

vendor:wagomodel:pfc200scope:eqversion:03.01.07\(13\)

Trust: 1.0

vendor:wagomodel:pfc200scope:eqversion:03.02.02\(14\)

Trust: 1.0

vendor:wagomodel:pfc200scope:eqversion:03.00.39\(12\)

Trust: 1.0

vendor:wagomodel:pfc200scope:eqversion:03.00.39(12)

Trust: 0.8

vendor:wagomodel:pfc200scope:eqversion:03.01.07(13)

Trust: 0.8

vendor:wagomodel:pfc200scope:eqversion:03.02.02(14)

Trust: 0.8

vendor:wagomodel:pfcscope:eqversion:20003.01.07(13)

Trust: 0.6

vendor:wagomodel:pfcscope:eqversion:20003.00.39(12)

Trust: 0.6

vendor:wagomodel:pfcscope:eqversion:20003.02.02(14)

Trust: 0.6

vendor:pfc200model: - scope:eqversion:03.00.39(12)

Trust: 0.4

vendor:pfc200model: - scope:eqversion:03.01.07(13)

Trust: 0.4

vendor:pfc200model: - scope:eqversion:03.02.02(14)

Trust: 0.4

sources: IVD: d1247760-93c2-4ae9-ba70-2fc8d4a53208 // IVD: 5cdd007e-89b7-4f08-bcd5-f4121200efdd // CNVD: CNVD-2020-19518 // JVNDB: JVNDB-2019-014978 // NVD: CVE-2019-5157

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2019-5157
value: HIGH

Trust: 1.0

NVD: JVNDB-2019-014978
value: HIGH

Trust: 0.8

CNVD: CNVD-2020-19518
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-202003-371
value: HIGH

Trust: 0.6

IVD: d1247760-93c2-4ae9-ba70-2fc8d4a53208
value: HIGH

Trust: 0.2

IVD: 5cdd007e-89b7-4f08-bcd5-f4121200efdd
value: HIGH

Trust: 0.2

nvd@nist.gov: CVE-2019-5157
severity: MEDIUM
baseScore: 6.5
vectorString: AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

NVD: JVNDB-2019-014978
severity: MEDIUM
baseScore: 6.5
vectorString: AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

CNVD: CNVD-2020-19518
severity: MEDIUM
baseScore: 6.5
vectorString: AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: d1247760-93c2-4ae9-ba70-2fc8d4a53208
severity: MEDIUM
baseScore: 6.5
vectorString: AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

IVD: 5cdd007e-89b7-4f08-bcd5-f4121200efdd
severity: MEDIUM
baseScore: 6.5
vectorString: AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

nvd@nist.gov: CVE-2019-5157
baseSeverity: HIGH
baseScore: 7.2
vectorString: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.2
impactScore: 5.9
version: 3.1

Trust: 1.0

NVD: JVNDB-2019-014978
baseSeverity: HIGH
baseScore: 7.2
vectorString: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: IVD: d1247760-93c2-4ae9-ba70-2fc8d4a53208 // IVD: 5cdd007e-89b7-4f08-bcd5-f4121200efdd // CNVD: CNVD-2020-19518 // JVNDB: JVNDB-2019-014978 // CNNVD: CNNVD-202003-371 // NVD: CVE-2019-5157

PROBLEMTYPE DATA

problemtype:CWE-78

Trust: 1.8

sources: JVNDB: JVNDB-2019-014978 // NVD: CVE-2019-5157

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202003-371

TYPE

operating system commend injection

Trust: 0.6

sources: CNNVD: CNNVD-202003-371

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2019-014978

PATCH
title:Top Pageurl:https://www.wago.com/us/
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2019-014978

EXTERNAL IDS
db:NVDid:CVE-2019-5157
Trust: 3.4
db:TALOSid:TALOS-2019-0950
Trust: 3.0
db:CNVDid:CNVD-2020-19518
Trust: 1.0
db:CNNVDid:CNNVD-202003-371
Trust: 1.0
db:JVNDBid:JVNDB-2019-014978
Trust: 0.8
db:IVDid:D1247760-93C2-4AE9-BA70-2FC8D4A53208
Trust: 0.2
db:IVDid:5CDD007E-89B7-4F08-BCD5-F4121200EFDD
Trust: 0.2
sources:
            
            
            IVD: d1247760-93c2-4ae9-ba70-2fc8d4a53208 // 
            
            
            
            IVD: 5cdd007e-89b7-4f08-bcd5-f4121200efdd // 
            
            
            
            CNVD: CNVD-2020-19518 // 
            
            
            
            JVNDB: JVNDB-2019-014978 // 
            
            
            
            CNNVD: CNNVD-202003-371 // 
            
            
            
            NVD: CVE-2019-5157

REFERENCES
url:https://talosintelligence.com/vulnerability_reports/talos-2019-0950
Trust: 3.0
url:https://nvd.nist.gov/vuln/detail/cve-2019-5157
Trust: 1.4
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-5157
Trust: 0.8
sources:
            
            
            CNVD: CNVD-2020-19518 // 
            
            
            
            JVNDB: JVNDB-2019-014978 // 
            
            
            
            CNNVD: CNNVD-202003-371 // 
            
            
            
            NVD: CVE-2019-5157

SOURCES
db:IVDid:d1247760-93c2-4ae9-ba70-2fc8d4a53208
db:IVDid:5cdd007e-89b7-4f08-bcd5-f4121200efdd
db:CNVDid:CNVD-2020-19518
db:JVNDBid:JVNDB-2019-014978
db:CNNVDid:CNNVD-202003-371
db:NVDid:CVE-2019-5157

LAST UPDATE DATE
2024-11-23T23:08:04.734000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2020-19518date:2020-03-25T00:00:00
db:JVNDBid:JVNDB-2019-014978date:2020-03-31T00:00:00
db:CNNVDid:CNNVD-202003-371date:2020-03-19T00:00:00
db:NVDid:CVE-2019-5157date:2024-11-21T04:44:27.557

SOURCES RELEASE DATE
db:IVDid:d1247760-93c2-4ae9-ba70-2fc8d4a53208date:2020-03-09T00:00:00
db:IVDid:5cdd007e-89b7-4f08-bcd5-f4121200efdddate:2020-03-09T00:00:00
db:CNVDid:CNVD-2020-19518date:2020-03-25T00:00:00
db:JVNDBid:JVNDB-2019-014978date:2020-03-31T00:00:00
db:CNNVDid:CNNVD-202003-371date:2020-03-09T00:00:00
db:NVDid:CVE-2019-5157date:2020-03-11T22:27:40.897