VDB

CVE-2021-21001

CVE-2021-21001 PUBLISHED CVSS 9.100000381469727 CRITICAL

On WAGO PFC200 devices in different firmware versions with special crafted packets an authorised attacker with network access to the device can access the file system with higher privileges.

EPSS 0.24% · 47.1th percentile

Risk Scores

CVSS 3.1
9.100000381469727
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
EPSS Score
0.24%
47.1th percentile

Affected Products

VendorProductVersions
wago750-891_firmware0
wago750-8203_firmware0
wago750-8207_firmware0
wago750-862_firmware0
wago750-8208_firmware0
wago750-823_firmware0
wago750-8204_firmware0
wago750-889_firmware0
wago750-8217_firmware0
wago750-881_firmware0
WAGOSeries PFC200 Controller*, 750-823, 750-831/000-00x
wago750-8214_firmware0
wago750-8206_firmware0
wago750-890_firmware0
wago750-8202_firmware0
wago750-8213_firmware0
wago750-882_firmware0
wago750-8210_firmware0
wago750-885_firmware0
wago750-852_firmware0

…and 9 more

Timeline

  • May 24, 2021 CVE Published
  • May 25, 2021 EPSS Score
  • Jul 27, 2021 EPSS Score
  • Sep 27, 2021 EPSS Score
  • Nov 27, 2021 EPSS Score
  • Jan 27, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Mar 30, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • May 30, 2022 EPSS Score
  • Jul 31, 2022 EPSS Score
  • Sep 30, 2022 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›