CVE-2019-12549

WAGO 852-303 before FW06, 852-1305 before FW06, and 852-1505 before FW03 devices contain hardcoded private keys for the SSH daemon. The fingerprint of the SSH host key from the corresponding SSH daemon matches the embedded private key.
References
Link Resource
https://cert.vde.com/en-us/advisories/vde-2019-013 Third Party Advisory
https://www.wago.com/us/ Vendor Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-19-164-02 Third Party Advisory US Government Resource
Configurations

Configuration 1


Information

Published : 2019-06-17 05:15

Updated : 2019-06-19 05:51


NVD link : CVE-2019-12549

Mitre link : CVE-2019-12549

Products Affected
CWE