WAGO fixes config export flaw threatening data leak from industrial devices

Researchers at ONEKEY have discovered a vulnerability in WAGO networking products that could expose sensitive data and credentials. The bug allows attackers to exploit an unauthenticated configuration export vulnerability, potentially downloading firmware or VPN configurations. While the flaw only has a medium severity score due to the need for recent data export and system reboot, it does increase in certain industrial settings where reboot rates are low. WAGO advised users to update their builds of affected products.