CVE-2017-12740

CVE-2017-12740

Vendor N/A
Product Siemens LOGO! Soft Comfort (All versions before V8.2)
Weakness CWE-494 · Download without integrity check
Published December 26, 2017
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Siemens LOGO! Soft Comfort (All versions before V8.2) lacks integrity verification of software packages downloaded via an unprotected communication channel. This could allow a remote attacker to manipulate the software package while performing a Man-in-the-Middle (MitM) attack.

Key dates

02Disclosure timeline

December 26, 2017 CVE published
August 5, 2024 Record updated