November 20, 2023
Severity Medium Analysis Summary Agent Tesla is a very popular spyware Trojan built for the.NET framework. Since its initial appearance in 2014, this has been deployed […]
Rewterz Threat Alert – Point-of-Sale Breach – Indicators of Compromise
June 13, 2019Rewterz Threat Alert – Malspam Campaign Delivering Malicious Files Using Compromised Windstream Email Addresses
June 14, 2019Rewterz Threat Alert – Point-of-Sale Breach – Indicators of Compromise
June 13, 2019Rewterz Threat Alert – Malspam Campaign Delivering Malicious Files Using Compromised Windstream Email Addresses
June 14, 2019
Severity
High
Analysis Summary
CVE-2019-12550
An attacker with access to the hard-coded credentials may gain access to the operating system of the managed switch with root privileges, which may allow manipulation of the operating system of the managed switch.
CVE-2019-12549
An attacker with access to the hard-coded SSH key may disrupt communication or compromise the managed switch. The SSH-keys cannot be regenerated by users and all switches use the same key.
Impact
- Use of Hard-coded Credentials
- Use of Hard-coded Cryptographic Key
- Using Components with Known Vulnerabilities
Affected Vendors
WAGO
Affected Products
- Industrial Managed Switches 852-303
- 852-1305
- and 852-1505
Remediation
Vendor recommends users update their managed switch to the latest firmware.
852-303: v1.2.2.S0 or later
https://www.wago.com/us/switches/industrial-managed-switch/p/852-303
852-1305: v1.1.6.S0 or later
https://www.wago.com/us/switches/industrial-managed-switch/p/852-1305
852-1505: v1.1.5.S0 or later
https://www.wago.com/us/switches/industrial-managed-switch/p/852-1505