← Back to home
ICSA-26-085-01  ·  Published 2026-03-26  ·  View on CISA ICS-CERT ↗

WAGO GmbH & Co. KG Industrial Managed Switches

CVSS 10.0 CRITICAL

CVEs (1)

Remediations

  • Please update your devices to the specified fixed firmware version. | Product | Fixed Version | |-------------------------------------------|---------------| | Lean Managed Switch 852-1812 | V1.2.1.S1 | | Lean Managed Switch 852-1813 | V1.2.1.S1 | | Lean Managed Switch 852-1813/000-001| V1.2.3.S1 | | Lean Managed Switch 852-1816 | V1.2.1.S1 | | Industrial Managed Switch 852-303 | V1.2.8.S1 | | Industrial Managed Switch 852-1305 | V1.2.0.S1 | | Industrial Managed Switch 852-1305/000-001| V1.2.0.S1 | | Industrial Managed Switch 852-1505/000-001| V1.2.0.S1 | | Industrial Managed Switch 852-1505 | V1.1.9.S1 | | Industrial Managed Switch 852-602 | V1.0.6.S1 | | Industrial Managed Switch 852-603 | V1.0.6.S1 | | Industrial Managed Switch 852-1605 | V1.2.5.S1 | | Lean Managed Switch 852-1812/010-000| V1.2.1.S1 | | Lean Managed Switch 852-1813/010-000| V1.2.1.S1 | | Lean Managed Switch 852-1813/010-001| V1.2.1.S1 | | Lean Managed Switch 852-1816/010-000| V1.2.1.S1 |
  • To eliminate the attack vector deactivate ssh and telnet on the device.
  • To reduce the attack vector deactivate ssh and telnet on the devices. This ensures that the CLI is only accessible locally via RS232.

Affected Vendors

WAGO

Affected Products (21)

WAGO · vers:generic/<V1.0.6.S0 vers:generic/<V1.0.6.S0
WAGO · vers:generic/<V1.1.9.S0 vers:generic/<V1.1.9.S0
WAGO · vers:generic/<V1.2.0.S0 vers:generic/<V1.2.0.S0
WAGO · vers:generic/<V1.2.1.S0 vers:generic/<V1.2.1.S0
WAGO · vers:generic/<V1.2.3.S0 vers:generic/<V1.2.3.S0
WAGO · vers:generic/<V1.2.5.S0 vers:generic/<V1.2.5.S0
WAGO · vers:generic/<V1.2.8.S0 vers:generic/<V1.2.8.S0
WAGO · V1.0.6.S1 V1.0.6.S1
WAGO · V1.1.9.S1 V1.1.9.S1
WAGO · V1.2.0.S1 V1.2.0.S1
WAGO · V1.2.1.S1 V1.2.1.S1
WAGO · V1.2.3.S1 V1.2.3.S1
WAGO · V1.2.5.S1 V1.2.5.S1
WAGO · V1.2.8.S1 V1.2.8.S1
WAGO · V1.0.6.S0 V1.0.6.S0
WAGO · V1.1.9.S0 V1.1.9.S0
WAGO · V1.2.0.S0 V1.2.0.S0
WAGO · V1.2.1.S0 V1.2.1.S0
WAGO · V1.2.3.S0 V1.2.3.S0
WAGO · V1.2.5.S0 V1.2.5.S0
WAGO · V1.2.8.S0 V1.2.8.S0

Affected Sectors

Commercial Facilities, Critical Manufacturing, Energy, Transportation Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more