PT-2021-11116 · Siemens · Logo! 24Ce+7
Max Bäumler
·
Published
2021-03-15
·
Updated
2024-09-10
·
CVE-2020-25236
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions:
LOGO! 12/24RCE versions all
LOGO! 12/24RCEo versions all
LOGO! 230RCE versions all
LOGO! 230RCEo versions all
LOGO! 24CE versions all
LOGO! 24CEo versions all
LOGO! 24RCE versions all
LOGO! 24RCEo versions all
SIPLUS LOGO! 12/24RCE versions all
SIPLUS LOGO! 12/24RCEo versions all
SIPLUS LOGO! 230RCE versions all
SIPLUS LOGO! 230RCEo versions all
SIPLUS LOGO! 24CE versions all
SIPLUS LOGO! 24CEo versions all
SIPLUS LOGO! 24RCE versions all
SIPLUS LOGO! 24RCEo versions all
Description:
A vulnerability has been identified in the control logic (CL) executed by the LOGO! 8, which could be manipulated to cause the device to improperly handle the manipulation and crash. After a successful attack, the device needs to be manually reset.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Handling of Exceptional Conditions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Logo! 12/24Rce
Logo! 230Rce
Logo! 24Ce
Logo! 24Ceo
Logo! 8
Siplus Logo! 12/24Rce
Siplus Logo! 230Rce
Siplus Logo! 24Ce