Vulnerability Details CVE-2020-25243
A vulnerability has been identified in LOGO! Soft Comfort (All versions < V8.4). A zip slip vulnerability could be triggered while importing a compromised project file
to the affected software. Chained with other vulnerabilities this vulnerability could
ultimately lead to a system takeover by an attacker.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.8%
CVSS Severity
CVSS v3 Score 5.1
CVSS v2 Score 7.2
References
Products affected by CVE-2020-25243
-
cpe:2.3:a:siemens:logo!_soft_comfort:-
-
cpe:2.3:a:siemens:logo!_soft_comfort:2.0
-
cpe:2.3:a:siemens:logo!_soft_comfort:3.0
-
cpe:2.3:a:siemens:logo!_soft_comfort:3.1
-
cpe:2.3:a:siemens:logo!_soft_comfort:4.0
-
cpe:2.3:a:siemens:logo!_soft_comfort:5.0
-
cpe:2.3:a:siemens:logo!_soft_comfort:6.1
-
cpe:2.3:a:siemens:logo!_soft_comfort:7.0
-
cpe:2.3:a:siemens:logo!_soft_comfort:8.0
-
cpe:2.3:a:siemens:logo!_soft_comfort:8.1