Primary

Context

WAGO libwagosnmp Unchecked Return Value Vulnerability Leading to Application Crash

Vulnerability

Patched

A vulnerability exists in the WAGO PFC firmware SDK-G2 component of libwagosnmp, affecting several WAGO products, including various PFC, Edge Controller, and TP600 models, all prior to specific firmware versions. This vulnerability allows an attacker with low privileges to manipulate requested memory sizes, causing the application to access invalid memory areas. The result is a crash of the application, although other applications remain unaffected.

Impact

Exploitation of this vulnerability can cause the application to crash by accessing invalid memory areas, disrupting the application's normal operation.

Remediation

Users are advised to update to Firmware 4.7.1 (FW29) or Firmware 03.10.11. For the latest Custom Firmware, please contact WAGO support.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

WAGO libwagosnmp Unchecked Return Value Vulnerability Leading to Application Crash

Vulnerability

Impact

Remediation

Affected Products

WAGO CC100 0751-9x01

WAGO Edge Controller 0752-8303

WAGO PFC100 G1 0750-810x

WAGO PFC200 G1 750-820x

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating