Vulnerability Details : CVE-2012-4879
The Linux Console on the WAGO I/O System 758 model 758-870, 758-874, 758-875, and 758-876 Industrial PC (IPC) devices has a default password of wago for the (1) root and (2) admin accounts, (3) a default password of user for the user account, and (4) a default password of guest for the guest account, which makes it easier for remote attackers to obtain login access via a TELNET session, a different vulnerability than CVE-2012-3013.
Products affected by CVE-2012-4879
- cpe:2.3:h:wago:wago_i\/o_system_758_industrial_pc_device:758-876:*:*:*:*:*:*:*
- cpe:2.3:h:wago:wago_i\/o_system_758_industrial_pc_device:758-874:*:*:*:*:*:*:*
- cpe:2.3:h:wago:wago_i\/o_system_758_industrial_pc_device:758-875:*:*:*:*:*:*:*
- cpe:2.3:h:wago:wago_i\/o_system_758_industrial_pc_device:758-870:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2012-4879
0.63%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 69 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2012-4879
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2012-4879
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2012-4879
-
http://www.wago.com/wagoweb/documentation/app_note/a1176/a117600e.pdf
Vendor Advisory
-
http://www.us-cert.gov/control_systems/pdf/ICSA-12-249-02.pdf
404 - File Not Found | CISAUS Government Resource
Jump to