Primary

Context

Wago Smart Designer Observable Discrepancy Vulnerability Allowing Project and Username Enumeration

Vulnerability

A vulnerability exists in Wago Smart Designer versions through 2.33.1, allowing low-privileged remote attackers to enumerate projects and usernames by sending iterative requests to a specific endpoint. This could lead to the disclosure of sensitive information.

Impact

Exploitation of this vulnerability could result in the unauthorized disclosure of project and username information.

Remediation

Users can upgrade to Wago Smart Designer version 2.34 to address this vulnerability.

Added: Apr 16, 2026, 5:22 AM

Updated: Apr 16, 2026, 5:22 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

0.0

relevance

6.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

0.0

relevance

6.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Wago Smart Designer Observable Discrepancy Vulnerability Allowing Project and Username Enumeration

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating