Описание
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3), LOGO! Soft Comfort (All versions < V8.3). The encryption of program data for the affected devices uses a static key. An attacker could use this key to extract confidential information from protected program files.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 8.3 (исключая)
Одновременно
cpe:2.3:o:siemens:logo\!_8_bm_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:logo\!_8_bm:-:*:*:*:*:*:*:*
Конфигурация 2Версия до 8.3 (исключая)
cpe:2.3:a:siemens:logo\!_soft_comfort:*:*:*:*:*:*:*:*
EPSS
Процентиль: 20%
0.00063
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-321
CWE-798
Связанные уязвимости
github
больше 3 лет назад
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3), LOGO! Soft Comfort (All versions < V8.3). The encryption of program data for the affected devices uses a static key. An attacker could use this key to extract confidential information from protected program files.
EPSS
Процентиль: 20%
0.00063
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-321
CWE-798