WAGO 750-8xx Controller Denial-of-Service Vulnerability

A denial-of-service vulnerability has been identified in WAGO 750-8xx controllers, including the 750-8100, 750-831, 750-880, and 750-889 models, all running versions through their respective maximums. The vulnerability allows an unauthenticated remote attacker to disrupt normal device operation by causing uncontrolled resource consumption, particularly high network load, which can interfere with the device's CPU performance and cycle timing. This network packet flood can be especially problematic, as it may temporarily degrade the device's functionality, although it typically resumes normal operation once the network load decreases.

Impact

Exploitation of this vulnerability leads to a significant increase in network traffic that can overwhelm the device's CPU, disrupting its normal operational cycle. While the device may return to standard functioning after the network load subsides, the temporary interference can affect time-sensitive processes.

Remediation

Users are advised to operate these controllers within closed networks or to use a firewall to block unauthorized access. Additionally, the network traffic can be regulated using the switch rate limit feature, which is available through the Web-based Management interface. For specific guidance, consult the product manuals, as this issue is recognized for certain WAGO 750-8xx models.