A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). The password used for authentication for the LOGO! Website and the LOGO! Access Tool is sent in a recoverable format. An attacker with access to the network traffic could derive valid logins.
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-480824.pdf | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: siemens
Published: 2020-12-14T21:05:19
Updated: 2020-12-14T21:05:19
Reserved: 2020-09-10T00:00:00
Link: CVE-2020-25235
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-12-14T21:15:20.207
Modified: 2020-12-16T15:38:08.537
Link: CVE-2020-25235
JSON object: View
Redhat Information
No data.
CWE