CVE-2017-2684

CVE-2017-2684

Vendor N/A
Product SIMATIC Logon All versions < V1.5 SP3 Update 2
Weakness CWE-592
Published February 22, 2017
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Siemens SIMATIC Logon prior to V1.5 SP3 Update 2 could allow an attacker with knowledge of a valid user name, and physical or network access to the affected system, to bypass the application-level authentication.

Key dates

02Disclosure timeline

February 22, 2017 CVE published
August 5, 2024 Record updated