Cleartext Transmission Vulnerability in WAGO e!Cockpit 1.5.1.1: Exposing Sensitive Data to Network Interception

CVE-2019-5107 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

A cleartext transmission vulnerability exists in the network communication functionality of WAGO e!Cockpit version 1.5.1.1. An attacker with access to network traffic can easily intercept, interpret, and manipulate data coming from, or destined for e!Cockpit. This includes passwords, configurations, and binaries being transferred to endpoints.

Learn more about our Network Penetration Testing.