Critical Infrastructure Sectors: Commercial Facilities, Transportation Systems
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). Affected devices load firmware updates without checking the authenticity. Furthermore the integrity of the unencrypted firmware is only verified by a non-cryptographic method. This could allow an malicious user to manipulate a firmware update and flash it to the device.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
siemens logo\\!_8_bm_firmware |
||
siemens logo\\!8_bm_fs-05_firmware |