CVE-2020-25234

CVE-2020-25234

Vendor Siemens
Product LOGO! 8 BM (incl. SIPLUS variants)
Weakness CWE-321
Published December 14, 2020
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3), LOGO! Soft Comfort (All versions < V8.3). The LOGO! program files generated and used by the affected components offer the possibility to save user-defined functions (UDF) in a password protected way. This protection is implemented in the software that displays the information. An attacker could reverse engineer the UDFs directly from stored program files.

Key dates

02Disclosure timeline

December 14, 2020 CVE published
August 4, 2024 Record updated