Primary

Context

WAGO Switches Year 2038 Integer Overflow Vulnerability

Vulnerability

An integer overflow vulnerability has been identified in WAGO fully and lean managed switches, all versions. A low privileged attacker can manipulate the device date to January 19, 2038, exceeding the 32-bit time limit. This manipulation causes the date to reset to January 1, 1970, disrupting system time and affecting system log timestamps.

Impact

Exploitation of this vulnerability resets the system time, causing a disruption in the timestamps of system logs.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

0.6

exploitability

4.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

0.6

exploitability

4.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

WAGO Switches Year 2038 Integer Overflow Vulnerability

Vulnerability

Impact

Affected Products

WAGO Fully Managed Switches 0852-0303

WAGO Fully Managed Switches 0852-1305

WAGO Fully Managed Switches 0852-1505

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating