VIR Vulnerability Intelligence Relay

CVE-2012-3013

critical
Published 2012-09-07 · Modified 2026-04-29
CVSS v3
CVSS v2
10.0
VIR risk
10.0

Description

WAGO I/O System 758 model 758-870, 758-874, 758-875, and 758-876 Industrial PC (IPC) devices have default passwords for unspecified Web Based Management accounts, which makes it easier for remote attackers to obtain administrative access via a TCP session.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: ics-cert@hq.dhs.gov — http://www.wago.com/wagoweb/documentation/app_note/a1176/a117600e.pdf

References

CWEs

CWE-255

Verify integrity in audit chain (admin only). AS-IS.