CRITICAL🇵🇱 Wersja polska

CVE-2023-4149

CVSS 9.8v3.1pub. 2023-11-21upd. 2024-11-21

A vulnerability in the web-based management allows an unauthenticated remote attacker to inject arbitrary system commands and gain full system control. Those commands are executed with root privileges. The vulnerability is located in the user request handling of the web-based management.

🤖 AI Analysis
How it works

The vulnerability is located in the user request handling module in the web management interface. The attacker sends a specially crafted HTTP request to the WWW panel without requiring authentication. Unvalidated input data is passed directly to system calls (CWE-78), allowing injection and execution of arbitrary shell commands with root privileges.

Impact

The attacker gains full control over the device's operating system with root privileges — they can read and modify data, install malicious software, disrupt device operation, or use it as an entry point for further compromise of the industrial network.

Mitigation & patch

Patches available from the manufacturer should be applied in accordance with the references (https://cert.vde.com/en/advisories/VDE-2023-037). Until the fix is deployed, it is recommended to isolate the WWW management interface from untrusted networks and restrict access to the administration panel exclusively to trusted IP addresses.

Who is affected

WAGO devices: 0852-0602 (firmware), 0852-0603 (firmware), 0852-1605 (firmware) — specific firmware versions indicated in the manufacturer's references (cert.vde.com VDE-2023-037)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Wago 0852 0602

    HW
    Wago
    wszystkie wersje
  • Wago 0852 0602 Firmware

    OS
    Wago
    < 1.0.6.s0
  • Wago 0852 0603

    HW
    Wago
    wszystkie wersje
  • Wago 0852 0603 Firmware

    OS
    Wago
    < 1.0.6.s0
  • Wago 0852 1605

    HW
    Wago
    wszystkie wersje
  • Wago 0852 1605 Firmware

    OS
    Wago
    < 1.2.5.s0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Command Injection
CWE
References

Related vulnerabilities

CVE-2025-41732CRITICAL9.8PL ✓ten sam vendor

Stack buffer overflow w urządzeniach WAGO 0852 — pełne przejęcie urządzenia

CVE-2025-41730CRITICAL9.8PL ✓ten sam vendor

Stack buffer overflow w urządzeniach Wago 0852 – pełne przejęcie urządzenia

CVE-2023-1698CRITICAL9.8ten sam vendor

In multiple products of WAGO a vulnerability allows an unauthenticated, remote attacker to create new users an...

CVE-2022-45138CRITICAL9.8ten sam vendor

The configuration backend of the web-based management can be used by unauthenticated users, although only auth...

CVE-2022-45140CRITICAL9.8ten sam vendor

The configuration backend allows an unauthenticated user to write arbitrary data with root privileges to the s...