CVE-2023-5188 – WAGO Improper Input Validation in IEC61850 Server / Telecontrol

https://notcve.org/view.php?id=CVE-2023-5188

The MMS Interpreter of WagoAppRTU in versions below 1.4.6.0 which is used by the WAGO Telecontrol Configurator is vulnerable to malformed packets. An remote unauthenticated attacker could send specifically crafted packets that lead to a denial-of-service condition until restart of the affected device. MMS Interpreter de WagoAppRTU en versiones inferiores a 1.4.6.0 que utiliza WAGO Telecontrol Configurator es vulnerable a paquetes con formato incorrecto. Un atacante remoto no autenticado podría enviar paquetes específicamente manipulados que conduzcan a una condición de denegación de servicio hasta que se reinicie el dispositivo afectado. • https://cert.vde.com/en/advisories/VDE-2023-044 • CWE-20: Improper Input Validation •