CVE-2026-3587 - Vulnerability Details

- Hidden CLI Function Allows Root Access

Description

An unauthenticated remote attacker can exploit a hidden function in the CLI prompt to escape the restricted interface, leading to full compromise of the device.

Published: 2026-03-23

Score: 10 Critical

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

WAGO

Lean Managed Switch 852-1812

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.2.1.S0

WAGO

Lean Managed Switch 852-1813

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.2.1.S0

WAGO

Lean Managed Switch 852-1813-000-001

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.2.3.S0

WAGO

Lean Managed Switch 852-1816

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.2.1.S0

WAGO

Industrial Managed Switch 852-303

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.2.8.S0

WAGO

Industrial Managed Switch 852-1305

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.2.0.S0

WAGO

Industrial Managed Switch 852-1305-000-001

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.2.0.S0

WAGO

Industrial Managed Switch 852-1505-000-001

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.2.0.S0

WAGO

Industrial Managed Switch 852-1505

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.1.9.S0

WAGO

Industrial Managed Switch 852-602

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.0.6.S0

WAGO

Industrial Managed Switch 852-603

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.0.6.S0

WAGO

Industrial Managed Switch 852-1605

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.2.5.S0

WAGO

Lean Managed Switch 852-1812-010-000

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.2.1.S0

WAGO

Lean Managed Switch 852-1813-010-000

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.2.1.S0

WAGO

Lean Managed Switch 852-1816-010-000

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.2.1.S0

WAGO

Lean Managed Switch 852-1813/010-001

unaffected

Version	Status	Constraints
`0.0.0`	affected	< V1.2.1.S0

No data.

Vendor Product Confidence Versions

Wago

Industrial Managed Switch 852-1305

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.2.0.S0)`	affected	generic	—

Wago

Industrial Managed Switch 852-1305-000-001

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.2.0.S0)`	affected	generic	—

Wago

Industrial Managed Switch 852-1505

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.1.9.S0)`	affected	generic	—

Wago

Industrial Managed Switch 852-1505-000-001

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.2.0.S0)`	affected	generic	—

Wago

Industrial Managed Switch 852-1605

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.2.5.S0)`	affected	generic	—

Wago

Industrial Managed Switch 852-303

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.2.8.S0)`	affected	generic	—

Wago

Industrial Managed Switch 852-602

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.0.6.S0)`	affected	generic	—

Wago

Industrial Managed Switch 852-603

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.0.6.S0)`	affected	generic	—

Wago

Lean Managed Switch 852-1812

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.2.1.S0)`	affected	generic	—

Wago

Lean Managed Switch 852-1812-010-000

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.2.1.S0)`	affected	generic	—

Wago

Lean Managed Switch 852-1813

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.2.1.S0)`	affected	generic	—

Wago

Lean Managed Switch 852-1813-000-001

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.2.3.S0)`	affected	generic	—

Wago

Lean Managed Switch 852-1813-010-000

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.2.1.S0)`	affected	generic	—

Wago

Lean Managed Switch 852-1813/010-001

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.2.1.S0)`	affected	generic	—

Wago

Lean Managed Switch 852-1816

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.2.1.S0)`	affected	generic	—

Wago

Lean Managed Switch 852-1816-010-000

100%

Version	Status	Scheme	Platform
`[0.0.0,V1.2.1.S0)`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.0013.

Exploitation none

Automatable yes

Technical Impact total

References

Link	Providers
https://certvde.com/de/advisories/VDE-2026-020

History

Tue, 24 Mar 2026 10:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Wago Wago industrial Managed Switch 852-1305 Wago industrial Managed Switch 852-1305-000-001 Wago industrial Managed Switch 852-1505 Wago industrial Managed Switch 852-1505-000-001 Wago industrial Managed Switch 852-1605 Wago industrial Managed Switch 852-303 Wago industrial Managed Switch 852-602 Wago industrial Managed Switch 852-603 Wago lean Managed Switch 852-1812 Wago lean Managed Switch 852-1812-010-000 Wago lean Managed Switch 852-1813 Wago lean Managed Switch 852-1813-000-001 Wago lean Managed Switch 852-1813-010-000 Wago lean Managed Switch 852-1813/010-001 Wago lean Managed Switch 852-1816 Wago lean Managed Switch 852-1816-010-000
Vendors & Products		Wago Wago industrial Managed Switch 852-1305 Wago industrial Managed Switch 852-1305-000-001 Wago industrial Managed Switch 852-1505 Wago industrial Managed Switch 852-1505-000-001 Wago industrial Managed Switch 852-1605 Wago industrial Managed Switch 852-303 Wago industrial Managed Switch 852-602 Wago industrial Managed Switch 852-603 Wago lean Managed Switch 852-1812 Wago lean Managed Switch 852-1812-010-000 Wago lean Managed Switch 852-1813 Wago lean Managed Switch 852-1813-000-001 Wago lean Managed Switch 852-1813-010-000 Wago lean Managed Switch 852-1813/010-001 Wago lean Managed Switch 852-1816 Wago lean Managed Switch 852-1816-010-000

Tue, 24 Mar 2026 08:00:00 +0000

Type	Values Removed	Values Added
Description	An unauthenticated remote attacker can exploit a hidden function in the CLI prompt to escape the restricted interface and gain root access to the underlying Linux based OS, leading to full compromise of the device.	An unauthenticated remote attacker can exploit a hidden function in the CLI prompt to escape the restricted interface, leading to full compromise of the device.

Mon, 23 Mar 2026 14:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Mon, 23 Mar 2026 08:15:00 +0000

Type	Values Removed	Values Added
Description		An unauthenticated remote attacker can exploit a hidden function in the CLI prompt to escape the restricted interface and gain root access to the underlying Linux based OS, leading to full compromise of the device.
Title		Hidden CLI Function Allows Root Access
Weaknesses		CWE-912
References		https://certvde.com/de/advisories/VDE-2026-020
Metrics		cvssV3_1 `{'score': 10, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H'}`

Subscriptions

Wago Industrial Managed Switch 852-1305 Industrial Managed Switch 852-1305-000-001 Industrial Managed Switch 852-1505 Industrial Managed Switch 852-1505-000-001 Industrial Managed Switch 852-1605 Industrial Managed Switch 852-303 Industrial Managed Switch 852-602 Industrial Managed Switch 852-603 Lean Managed Switch 852-1812 Lean Managed Switch 852-1812-010-000 Lean Managed Switch 852-1813 Lean Managed Switch 852-1813-000-001 Lean Managed Switch 852-1813-010-000 Lean Managed Switch 852-1813/010-001 Lean Managed Switch 852-1816 Lean Managed Switch 852-1816-010-000

MITRE

Status: PUBLISHED

Assigner: CERTVDE

Published: 2026-03-23T07:49:17.325Z

Updated: 2026-03-24T07:38:36.602Z

Reserved: 2026-03-05T09:44:25.876Z

Link: CVE-2026-3587

Vulnrichment

Updated: 2026-03-23T14:05:45.712Z

NVD

Status : Awaiting Analysis

Published: 2026-03-23T08:16:17.360

Modified: 2026-03-24T08:16:01.910

Link: CVE-2026-3587

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-03-25T14:49:30Z

Weaknesses

CWE-912

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object