WAGO GmbH & Co. KG Industrial Managed Switches
Summary
An unauthenticated remote attacker can exploit a hidden function in the CLI prompt of WAGO Industrial Managed Switches to escape the restricted interface. This vulnerability can lead to full compromise of the affected devices.
IFF Assessment
The discovery of a remote code execution vulnerability in industrial managed switches poses a significant risk to operational technology environments, allowing attackers to gain full control.
Severity
The CVSS score is estimated high (9.8) due to the ability of an unauthenticated remote attacker to achieve Remote Code Execution (CRITICAL severity) through a command injection vulnerability that allows escaping a restricted CLI interface.
Defender Context
This vulnerability affects critical industrial control systems, making it imperative for organizations to update firmware immediately. Defenders should monitor network traffic for any unusual activity originating from or targeting these devices and consider network segmentation to limit the blast radius of a potential exploit.