WAGO: Multiple products prone to multiple vulnerabilities in e!Runtime / CODESYS V3 Runtime

Multiple WAGO devices are prone to vulnerabilites in the used CODESYS V3 framework.


CVE-2022-47381: 8.8
CVE-2022-47379: 8.8
CVE-2022-47380: 8.8
CVE-2022-47390: 8.8
CVE-2022-47389: 8.8
CVE-2022-47388: 8.8
CVE-2022-47387: 8.8
CVE-2022-47386: 8.8
CVE-2022-47385: 8.8
CVE-2022-47384: 8.8
CVE-2022-47383: 8.8
CVE-2022-47382: 8.8
CVE-2022-47391: 7.5
CVE-2022-47392: 6.5
CVE-2022-47393: 6.5
CVE-2022-47378: 6.5

WAGO: Bluetooth LE vulnerability in WLAN-ETHERNET-Gateway

A vulnerability allows Bluetooth LE pairing traffic to be sniffed and used to bypass authentication for pairing.


CVE-2022-25836: 7.5

CODESYS: Vulnerability in CODESYS Development System and CODESYS Scripting


CVE-2023-3670: 7.3

Festo: Several vulnerabilities in FactoryViews

FactoryViews bundles many third-party applications which are used in background processes to provide the software's features. From time to time, vulnerabilities in these bundled applications are discovered. These are typically fixed in newer versions of FactoryViews by updating the bundled applications.

FactoryViews versions up to and including 1.5.2 contain around 200 such vulnerabilities listed in this advisory.
Version 1.6.0 is a security rollup release which includes updates to all bundled applications and fixes these vulnerabilities.

At this time, FactoryViews Lite cannot be updated beyond version 1.1.
FactoryViews 1.7 will unify non-Lite and Lite versions and fix these vulnerabilities for users of FactoryViews Lite.


CVE-2021-21708: 9.8
CVE-2016-3078: 9.8
CVE-2021-3918: 9.8
CVE-2019-11049: 9.8
CVE-2019-9025: 9.8
CVE-2019-9021: 9.8
CVE-2019-9020: 9.8
CVE-2019-9641: 9.8
CVE-2019-9023: 9.8
CVE-2019-11043: 9.8
CVE-2021-22930: 9.8
CVE-2018-12882: 9.8
CVE-2023-25690: 9.8
CVE-2021-22931: 9.8
CVE-2019-11034: 9.1
CVE-2022-1586: 9.1
CVE-2022-1587: 9.1
CVE-2019-11035: 9.1
CVE-2019-11036: 9.1
CVE-2022-35255: 9.1
CVE-2019-11039: 9.1
CVE-2019-11040: 9.1
CVE-2020-7061: 9.1
CVE-2020-7060: 9.1
CVE-2020-7059: 9.1
CVE-2022-36760: 9.0
CVE-2020-7065: 8.8
CVE-2022-31626: 8.8
CVE-2021-37701: 8.6
CVE-2021-37713: 8.6
CVE-2021-37712: 8.6
CVE-2022-21824: 8.2
CVE-2016-5385: 8.1
CVE-2021-32804: 8.1
CVE-2022-31625: 8.1
CVE-2022-32212: 8.1
CVE-2021-32803: 8.1
CVE-2023-0568: 8.1
CVE-2022-43548: 8.1
CVE-2020-28948: 7.8
CVE-2021-39135: 7.8
CVE-2020-28949: 7.8
CVE-2021-22921: 7.8
CVE-2021-39134: 7.8
CVE-2022-27448: 7.5
CVE-2021-46669: 7.5
CVE-2006-20001: 7.5
CVE-2018-14883: 7.5
CVE-2018-19518: 7.5
CVE-2018-19935: 7.5
CVE-2022-27376: 7.5
CVE-2022-27377: 7.5
CVE-2019-9022: 7.5
CVE-2022-27378: 7.5
CVE-2022-27379: 7.5
CVE-2019-9024: 7.5
CVE-2022-27380: 7.5
CVE-2022-27381: 7.5
CVE-2019-9637: 7.5
CVE-2022-27382: 7.5
CVE-2019-9638: 7.5
CVE-2022-27383: 7.5
CVE-2019-9639: 7.5
CVE-2022-27384: 7.5
CVE-2019-9640: 7.5
CVE-2022-27385: 7.5
CVE-2022-27386: 7.5
CVE-2022-27387: 7.5
CVE-2022-27444: 7.5
CVE-2022-27445: 7.5
CVE-2022-27446: 7.5
CVE-2022-27447: 7.5
CVE-2022-27449: 7.5
CVE-2022-27451: 7.5
CVE-2019-11044: 7.5
CVE-2022-27452: 7.5
CVE-2022-27455: 7.5
CVE-2022-27456: 7.5
CVE-2022-27457: 7.5
CVE-2022-27458: 7.5
CVE-2019-20454: 7.5
CVE-2022-32081: 7.5
CVE-2022-32082: 7.5
CVE-2020-7062: 7.5
CVE-2022-32083: 7.5
CVE-2022-32084: 7.5
CVE-2022-32085: 7.5
CVE-2022-32086: 7.5
CVE-2022-32087: 7.5
CVE-2022-32088: 7.5
CVE-2022-32089: 7.5
CVE-2022-32091: 7.5
CVE-2020-36193: 7.5
CVE-2023-0662: 7.5
CVE-2021-3807: 7.5
CVE-2023-23918: 7.5
CVE-2023-23919: 7.5
CVE-2021-21702: 7.5
CVE-2023-24807: 7.5
CVE-2023-27522: 7.5
CVE-2021-22883: 7.5
CVE-2021-22884: 7.5
CVE-2021-22940: 7.5
CVE-2021-27290: 7.5
CVE-2021-44531: 7.4
CVE-2022-32223: 7.3
CVE-2021-2144: 7.2
CVE-2021-27928: 7.2
CVE-2019-11041: 7.1
CVE-2019-11042: 7.1
CVE-2021-21703: 7.0
CVE-2021-22959: 6.5
CVE-2022-31629: 6.5
CVE-2019-11047: 6.5
CVE-2019-11050: 6.5
CVE-2022-32214: 6.5
CVE-2022-32215: 6.5
CVE-2022-35256: 6.5
CVE-2021-21706: 6.5
CVE-2020-7069: 6.5
CVE-2022-47015: 6.5
CVE-2021-22960: 6.5
CVE-2022-32213: 6.5
CVE-2023-0567: 6.2
CVE-2018-17082: 6.1
CVE-2022-23808: 6.1
CVE-2021-21704: 5.9
CVE-2019-11045: 5.9
CVE-2021-2389: 5.9
CVE-2021-2011: 5.9
CVE-2018-14851: 5.5
CVE-2022-31628: 5.5
CVE-2021-46665: 5.5
CVE-2021-46666: 5.5
CVE-2021-46662: 5.5
CVE-2021-46663: 5.5
CVE-2022-36313: 5.5
CVE-2021-46661: 5.5
CVE-2021-46668: 5.5
CVE-2021-46664: 5.5
CVE-2021-35604: 5.5
CVE-2021-46667: 5.5
CVE-2020-7064: 5.4
CVE-2023-25727: 5.4
CVE-2023-23936: 5.4
CVE-2020-7063: 5.3
CVE-2020-7070: 5.3
CVE-2021-22918: 5.3
CVE-2020-7071: 5.3
CVE-2022-32222: 5.3
CVE-2022-37436: 5.3
CVE-2021-44533: 5.3
CVE-2021-22939: 5.3
CVE-2021-44532: 5.3
CVE-2019-11048: 5.3
CVE-2019-11046: 5.3
CVE-2021-21705: 5.3
CVE-2021-21707: 5.3
CVE-2021-23362: 5.3
CVE-2021-2180: 4.9
CVE-2021-2166: 4.9
CVE-2021-2154: 4.9
CVE-2021-2194: 4.9
CVE-2021-2372: 4.4
CVE-2021-2022: 4.4
CVE-2022-21595: 4.4
CVE-2021-2174: 4.4
CVE-2022-23807: 4.3
CVE-2020-7066: 4.3
CVE-2021-2032: 4.3
CVE-2023-23920: 4.2
CVE-2021-2007: 3.7
CVE-2020-7068: 3.6

Frauscher: Diagnostic System FDS001 for FAdC/FAdCi Path Traversal vulnerability

Frauscher Diagnostic System FDS001 for FAdC R1 and FAdCi R1 v1.3.3 and all previous versions are vulnerable to a path traversal vulnerability of the web interface by a crafted URL without authentication.


CVE-2023-2880: 7.5

Feeds

By Vendor

Archive

2024
2023
2022
2021
2020
2019
2018
2017

Legend

(Scoring for CVSS 2.0,3.0+3.1)
None
No CVE available
Low
0.1 <= 3.9
Medium
4.0 <= 6.9
High
7.0 <= 8.9
Critical
9.0 <= 10.0