cvedb.io
CVE-2018-8836
MEDIUM · CVSS 5.3
EPSS exploitation probability: 0%
Published 2018-04-03T13:29:00.277 · Last modified 2026-06-17T02:05:28.843

Summary

Wago 750 Series PLCs with firmware version 10 and prior include a remote attack may take advantage of an improper implementation of the 3 way handshake during a TCP connection affecting the communications with commission and service tools. Specially crafted packets may also be sent to Port 2455/TCP/IP, used in Codesys management software, which may result in a denial-of-service condition of communications with commissioning and service tools.

Affected products

wago — 750-880_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when wago ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.