CVE-2020-25228

CVE-2020-25228

Vendor Siemens
Product LOGO! 8 BM (incl. SIPLUS variants)
Weakness CWE-306 · Missing auth
Published December 14, 2020
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). A service available on port 10005/tcp of the affected devices could allow complete access to all services without authorization. An attacker could gain full control over an affected device, if he has access to this service. The system manual recommends to protect access to this port.

Key dates

02Disclosure timeline

December 14, 2020 CVE published
August 4, 2024 Record updated