VDB
ICSA-20-161-03
ICSA-20-161-03
PUBLISHED
CVSS 9.399999618530273 CRITICAL
Successful exploitation of this vulnerability could allow an attacker to read and modify device configurations and obtain project files from affected devices.
Risk Scores
CVSS v3.1
9.399999618530273
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L/E:F/RL:U/RC:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| LOGO! 8 BM (incl. SIPLUS variants): All versions |
Timeline
- Jun 9, 2020 CVE Published
- Dec 8, 2020 CVE Updated
References
- https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2020/icsa-20-161-03.json advisory
- https://www.cisa.gov/news-events/ics-advisories/icsa-20-161-03 advisory
- https://us-cert.cisa.gov/ics/alerts/ICS-ALERT-10-301-01 url
- https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf url
- https://us-cert.cisa.gov/ics/tips/ICS-TIP-12-146-01B url
- https://cert-portal.siemens.com/productcert/txt/SSA-817401.txt url