Vulnerability Details CVE-2020-25231
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3), LOGO! Soft Comfort (All versions < V8.3). The encryption of program data for the affected devices uses a static key. An attacker could use this key to extract confidential information from protected program files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.3%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 2.1
References
Products affected by CVE-2020-25231
-
cpe:2.3:a:siemens:logo!_soft_comfort:-
-
cpe:2.3:a:siemens:logo!_soft_comfort:2.0
-
cpe:2.3:a:siemens:logo!_soft_comfort:3.0
-
cpe:2.3:a:siemens:logo!_soft_comfort:3.1
-
cpe:2.3:a:siemens:logo!_soft_comfort:4.0
-
cpe:2.3:a:siemens:logo!_soft_comfort:5.0
-
cpe:2.3:a:siemens:logo!_soft_comfort:6.1
-
cpe:2.3:a:siemens:logo!_soft_comfort:7.0
-
cpe:2.3:a:siemens:logo!_soft_comfort:8.0
-
cpe:2.3:a:siemens:logo!_soft_comfort:8.1
-
cpe:2.3:h:siemens:logo!_8_bm:-
-
cpe:2.3:o:siemens:logo!_8_bm_firmware:-
-
cpe:2.3:o:siemens:logo!_8_bm_firmware:1.81.01
-
cpe:2.3:o:siemens:logo!_8_bm_firmware:1.81.03
-
cpe:2.3:o:siemens:logo!_8_bm_firmware:1.81.04
-
cpe:2.3:o:siemens:logo!_8_bm_firmware:1.82.01
-
cpe:2.3:o:siemens:logo!_8_bm_firmware:1.82.02
-
cpe:2.3:o:siemens:logo!_8_bm_firmware:1.82.03
-
cpe:2.3:o:siemens:logo!_8_bm_firmware:1.82.04