Lucene search

K
cvelistSiemensCVELIST:CVE-2020-25231
HistoryDec 14, 2020 - 9:05 p.m.

CVE-2020-25231

2020-12-1421:05:18
CWE-321
siemens
www.cve.org
6
vulnerability
logo! 8 bm
logo! soft comfort
encryption
static key
confidential information
program files

AI Score

5.2

Confidence

High

EPSS

0

Percentile

12.6%

A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3), LOGO! Soft Comfort (All versions < V8.3). The encryption of program data for the affected devices uses a static key. An attacker could use this key to extract confidential information from protected program files.

CNA Affected

[
  {
    "product": "LOGO! 8 BM (incl. SIPLUS variants)",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V8.3"
      }
    ]
  },
  {
    "product": "LOGO! Soft Comfort",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V8.3"
      }
    ]
  }
]

AI Score

5.2

Confidence

High

EPSS

0

Percentile

12.6%

Related for CVELIST:CVE-2020-25231