EUVD-2022-39078

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Vulnerability in LOGO! devices allows memory access via improper TCP packet offset validation

Reporter	Title	Published	Views	Family All 13
ATTACKERKB	CVE-2022-36363	11 Oct 202211:15	–	attackerkb
Circl	CVE-2022-36363	11 Oct 202214:25	–	circl
CNNVD	Siemens LOGO! 8 BM 输入验证错误漏洞	11 Oct 202200:00	–	cnnvd
CNVD	Siemens LOGO! 8 BM input validation error vulnerability	13 Oct 202200:00	–	cnvd
CVE	CVE-2022-36363	11 Oct 202200:00	–	cve
Cvelist	CVE-2022-36363	11 Oct 202200:00	–	cvelist
ICS	Siemens LOGO! 8 BM Devices	11 Oct 202200:00	–	ics
NCSC	Vulnerabilities fixed in Siemens products	11 Oct 202200:00	–	ncsc
NVD	CVE-2022-36363	11 Oct 202211:15	–	nvd
Prion	Design/Logic Flaw	11 Oct 202211:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "06f96854-17d6-3530-960a-5fdd647a442e",
        "vendor": {
          "name": "Siemens"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "02990be2-3f37-364e-a381-b06830524052",
        "product": {
          "name": "SIPLUS LOGO! 12/24RCE"
        },
        "product_version": "0 <*"
      },
      {
        "id": "130b98ea-47dd-30fb-be46-a7723e0b2864",
        "product": {
          "name": "SIPLUS LOGO! 24RCE"
        },
        "product_version": "0 <*"
      },
      {
        "id": "19740877-7957-387f-abc3-69e96ae16453",
        "product": {
          "name": "SIPLUS LOGO! 230RCEo"
        },
        "product_version": "0 <*"
      },
      {
        "id": "1fd51c8a-5e8f-3c2d-8634-16325bb95b51",
        "product": {
          "name": "SIPLUS LOGO! 24RCEo"
        },
        "product_version": "0 <*"
      },
      {
        "id": "2617a3f6-32db-35b6-a80f-ad33b34a5771",
        "product": {
          "name": "LOGO! 24CEo"
        },
        "product_version": "0 <*"
      },
      {
        "id": "33297bf9-be04-3260-a35a-4e641d7bb8fc",
        "product": {
          "name": "LOGO! 24CE"
        },
        "product_version": "0 <*"
      },
      {
        "id": "4864e9cd-8a74-36d9-ac74-0a07401f9b0a",
        "product": {
          "name": "LOGO! 12/24RCE"
        },
        "product_version": "0 <*"
      },
      {
        "id": "50ebf671-335b-3f7a-85d6-8d37b152c068",
        "product": {
          "name": "LOGO! 230RCE"
        },
        "product_version": "0 <*"
      },
      {
        "id": "58a6ef30-4790-389d-b1a7-eb406bca4f72",
        "product": {
          "name": "SIPLUS LOGO! 24CEo"
        },
        "product_version": "0 <*"
      },
      {
        "id": "713cafa2-f12a-3339-a297-bb7dac0067fd",
        "product": {
          "name": "LOGO! 24RCE"
        },
        "product_version": "0 <*"
      },
      {
        "id": "82cc1b79-47f4-3109-97c7-5b90156751e6",
        "product": {
          "name": "LOGO! 230RCEo"
        },
        "product_version": "0 <*"
      },
      {
        "id": "894b27c6-fc1e-3658-b5ac-d0ba8b7bf7be",
        "product": {
          "name": "SIPLUS LOGO! 230RCE"
        },
        "product_version": "0 <*"
      },
      {
        "id": "915c1933-d137-3efc-8a7b-9226b2bbf765",
        "product": {
          "name": "LOGO! 24RCEo"
        },
        "product_version": "0 <*"
      },
      {
        "id": "955f4338-e8e6-32e8-9bb3-3d727ce46015",
        "product": {
          "name": "LOGO! 12/24RCEo"
        },
        "product_version": "0 <*"
      },
      {
        "id": "b5f2553b-6d28-3928-bded-ce3e64834732",
        "product": {
          "name": "SIPLUS LOGO! 12/24RCEo"
        },
        "product_version": "0 <*"
      },
      {
        "id": "d8a48aa5-6cc1-3a09-82d7-00ddf24116b1",
        "product": {
          "name": "SIPLUS LOGO! 24CE"
        },
        "product_version": "0 <*"
      }
    ]
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-955858.pdf
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-955858.html

03 Oct 2025 20:07Current

5.4Medium risk

Vulners AI Score5.4

CVSS 3.15.3

EPSS0.00263

vulnerability logo! devices memory access tcp packet validation improper offset