CVE-2022-50926: WAGO 750-8212 PFC200 G2 2ETH RS Privilege Escalation
WAGO 750-8212 PFC200 G2 2ETH RS firmware contains a privilege escalation vulnerability that allows attackers to manipulate user session cookies. Attackers can modify the cookie's 'name' and 'roles' parameters to elevate from ordinary user to administrative privileges without authentication.
Affected Software
Event History
Frequently Asked Questions
What is the severity of CVE-2022-50926?
CVE-2022-50926 has been classified as a high severity privilege escalation vulnerability.
How does CVE-2022-50926 affect the WAGO 750-8212 PFC200 G2 2ETH RS?
CVE-2022-50926 allows attackers to manipulate user session cookies, facilitating unauthorized privilege escalation.
What can attackers do with CVE-2022-50926?
Attackers can modify the 'name' and 'roles' parameters of the session cookies to elevate their privileges from ordinary user to admin.
How do I fix CVE-2022-50926?
To mitigate CVE-2022-50926, update the firmware of the WAGO 750-8212 PFC200 G2 2ETH RS to the latest version that addresses this vulnerability.
Who is affected by CVE-2022-50926?
Users of the WAGO 750-8212 PFC200 G2 2ETH RS running vulnerable firmware versions are at risk from CVE-2022-50926.