CVE-2023-1698
Description
In multiple products of WAGO a vulnerability allows an unauthenticated, remote attacker to create new users and change the device configuration which can result in unintended behaviour, Denial of Service and full system compromise.
CERT VDE
Severity: CRITICAL
CVE ID: CVE-2023-1698
CVSS Score: 9.8
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Proof Of Concept
Nuclei Templates for CVE-2023-1698
Refrence: Project Discovery GitHub
Chocapikk
WAGO Remote Exploit Tool for CVE-2023-1698
Refrence: GitHub
deIndra
Refrence: GitHub
thedarknessdied
WAGO系统远程代码执行漏洞(CVE-2023-1698)
Refrence: GitHub
Content on GitHub
codeb0ss | watchers:11
CVE-2023-1698-PoC
Mass Exploit - CVE-2023-1698 < Unauthenticated Remote Command Execution
Refrence: GitHub