Vulnerability Spotlight: A deep dive into WAGO’s cloud connectivity and the vulnerabilities that arise
Tags
| attack-pattern: | Data Credentials - T1589.001 Firmware - T1592.003 Server - T1583.004 Server - T1584.004 Web Service - T1481 Vulnerabilities - T1588.006 Sudo - T1169 Web Service - T1102 |
Common Information
| Type | Value |
|---|---|
| UUID | 8f41d0fe-9220-43f9-817a-8789ec958356 |
| Fingerprint | b17b9c436287a3e4 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Oct. 21, 2020, 3:30 p.m. |
| Added to db | Oct. 9, 2022, 4:14 p.m. |
| Last updated | Nov. 14, 2024, 2:04 p.m. |
| Headline | Vulnerability Information |
| Title | Vulnerability Spotlight: A deep dive into WAGO’s cloud connectivity and the vulnerabilities that arise |
| Detected Hints/Tags/Attributes | 64/1/22 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 2 | cve-2019-5161 |
|
| Details | CVE | 2 | cve-2019-5155 |
|
| Details | CVE | 2 | cve-2019-5157 |
|
| Details | CVE | 2 | cve-2019-5160 |
|
| Details | CVE | 2 | cve-2019-5134 |
|
| Details | CVE | 2 | cve-2019-5135 |
|
| Details | CVE | 2 | cve-2019-5166 |
|
| Details | CVE | 2 | cve-2019-5182 |
|
| Details | CVE | 2 | cve-2019-5167 |
|
| Details | CVE | 2 | cve-2019-5175 |
|
| Details | Domain | 1 | attackerstorage.blob.core.windows.net |
|
| Details | Domain | 1 | wagocloud.azure-devices.net |
|
| Details | Domain | 2 | azure-devices.net |
|
| Details | Domain | 1 | attackeriothub.azure-devices.net |
|
| Details | Domain | 1 | rootshell.sh |
|
| Details | Domain | 904 | snort.org |
|
| Details | File | 1 | attackerstorage.blob |
|
| Details | File | 1 | poc_controlfile.xml |
|
| Details | File | 1 | iocheckcache.xml |
|
| Details | File | 1 | raucb.txt |
|
| Details | Url | 1 | https://attackerstorage.blob.core.windows.net/test/poc_controlfile.xml |
|
| Details | Url | 1 | https://attackerstorage.blob.core.windows.net/test/update_v030039_12_r38974.raucb |