39 matches found
EUVD-2019-2638
Malware in sbrugna...
EUVD-2020-17934
Malware in sbrugna...
EUVD-2020-17933
Malware in sbrugna...
CVE-2020-25243
A vulnerability has been identified in LOGO! Soft Comfort All versions V8.4. A zip slip vulnerability could be triggered while importing a compromised project file to the affected software. Chained with other vulnerabilities this vulnerability could ultimately lead to a system takeover by an...
CVE-2019-10924
A vulnerability has been identified in LOGO! Soft Comfort All versions V8.3. The vulnerability could allow an attacker to execute arbitrary code if the attacker tricks a legitimate user to open a manipulated project. In order to exploit the vulnerability, a valid user must open a manipulated...
CVE-2020-25244
A vulnerability has been identified in LOGO! Soft Comfort All versions V8.4. The software insecurely loads libraries which makes it vulnerable to DLL hijacking. Successful exploitation by a local attacker could lead to a takeover of the system where the software is installed...
CVE-2020-25244
A vulnerability has been identified in LOGO! Soft Comfort All versions V8.4. The software insecurely loads libraries which makes it vulnerable to DLL hijacking. Successful exploitation by a local attacker could lead to a takeover of the system where the software is installed...
CVE-2020-25243
A vulnerability has been identified in LOGO! Soft Comfort All versions V8.4. A zip slip vulnerability could be triggered while importing a compromised project file to the affected software. Chained with other vulnerabilities this vulnerability could ultimately lead to a system takeover by an...
Code injection
A vulnerability has been identified in LOGO! Soft Comfort All versions V8.4. The software insecurely loads libraries which makes it vulnerable to DLL hijacking. Successful exploitation by a local attacker could lead to a takeover of the system where the software is installed...
Design/Logic Flaw
A vulnerability has been identified in LOGO! Soft Comfort All versions V8.4. A zip slip vulnerability could be triggered while importing a compromised project file to the affected software. Chained with other vulnerabilities this vulnerability could ultimately lead to a system takeover by an...
CVE-2020-25243
A vulnerability has been identified in LOGO! Soft Comfort All versions V8.4. A zip slip vulnerability could be triggered while importing a compromised project file to the affected software. Chained with other vulnerabilities this vulnerability could ultimately lead to a system takeover by an...
CVE-2020-25243
A vulnerability has been identified in LOGO! Soft Comfort All versions V8.4. A zip slip vulnerability could be triggered while importing a compromised project file to the affected software. Chained with other vulnerabilities this vulnerability could ultimately lead to a system takeover by an...
CVE-2020-25243
CVE-2020-25243 affects Siemens LOGO! Soft Comfort prior to V8.4. The issue is a zip-slip vulnerability triggered when importing a compromised project file, potentially allowing a local attacker to take over the host system if chained with other vulnerabilities. Affected software is LOGO! Soft Com...
CVE-2020-25244
Siemens LOGO! Soft Comfort is affected by CVE-2020-25244. All versions before V8.4 are vulnerable to DLL hijacking due to insecure library loading, enabling a local attacker to take over the system where the software is installed. Public sources corroborate the issue and Siemens PT Security/Red H...
CVE-2020-25244
A vulnerability has been identified in LOGO! Soft Comfort All versions V8.4. The software insecurely loads libraries which makes it vulnerable to DLL hijacking. Successful exploitation by a local attacker could lead to a takeover of the system where the software is installed...
PT-2021-11124 · Siemens · Logo! Soft Comfort
Name of the Vulnerable Software and Affected Versions: LOGO! Soft Comfort versions prior to V8.4 Description: A security issue has been identified in the software, where it insecurely loads libraries, making it susceptible to DLL hijacking. This could allow a local attacker to successfully exploi...
PT-2021-11123 · Siemens · Logo! Soft Comfort
Name of the Vulnerable Software and Affected Versions: LOGO! Soft Comfort versions prior to V8.4 Description: A zip slip vulnerability could be triggered while importing a compromised project file to the affected software. This issue could ultimately lead to a system takeover by an attacker if...
Siemens LOGO! Soft Comfort 代码问题漏洞
Siemens LOGO! Soft Comfort is a set of automation logic programming software from Siemens Germany. A security vulnerability exists in Siemens LOGO! A local attacker could exploit this vulnerability to cause a takeover of the system on which the software is installed...
Siemens LOGO! Soft Comfort
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...
CVE-2020-25234
A vulnerability has been identified in LOGO! 8 BM incl. SIPLUS variants All versions V8.3, LOGO! Soft Comfort All versions V8.3. The LOGO! program files generated and used by the affected components offer the possibility to save user-defined functions UDF in a password protected way. This...