VDB
CVE-2020-25243
CVE-2020-25243
PUBLISHED
CVSS 5.099999904632568 MEDIUM
A vulnerability has been identified in LOGO! Soft Comfort (All versions < V8.4). A zip slip vulnerability could be triggered while importing a compromised project file to the affected software. Chained with other vulnerabilities this vulnerability could ultimately lead to a system takeover by an attacker.
EPSS 0.05% · 16.2th percentile
Risk Scores
CVSS 3.1
5.099999904632568
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L/E:P/RL:U/RC:C
EPSS Score
0.05%
16.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | LOGO! Soft Comfort | * |
| siemens | logo\!_soft_comfort |
Exploit Intelligence
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- CVE-2017-1000367 (github-poc)
- CVE-2017-1000367 (github-poc)
- CVE-2017-1000367 (github-poc)
- CVE-2017-1000367 (github-poc)
- own implementation of the CVE-2017-1000367 sudo privilege escalation vulnerability in python (github-poc)
- own implementation of the CVE-2017-1000367 sudo privilege escalation vulnerability in python (github-poc)
…and 11 more exploits
Timeline
- Apr 14, 2021 CVE Published
- Apr 27, 2021 EPSS Score
- Jun 30, 2021 EPSS Score
- Sep 1, 2021 EPSS Score
- Nov 2, 2021 EPSS Score
- Jan 3, 2022 EPSS Score
- Mar 6, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 8, 2022 EPSS Score
- Jul 9, 2022 EPSS Score
- Sep 10, 2022 EPSS Score
- Nov 11, 2022 EPSS Score
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-788287.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-248289.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-853866.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-185699.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-983300.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-844761.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-163226.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-763427.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-497656.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-761617.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-669158.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-574442.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-705111.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-292794.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-761844.pdf advisory
- https://nvd.nist.gov/vuln/detail/CVE-2020-25243 advisory