Denial-of-Service Vulnerability in Siemens LOGO!8 by Siemens
CVE-2019-6571

7.5HIGH

Key Information:

Vendor
Siemens
Vendor
CVE Published:
12 June 2019

Summary

A vulnerability has been discovered in the Siemens LOGO!8 series of devices, which allows attackers to trigger a Denial-of-Service condition. This is executed through unauthorized network access to port 10005/tcp. By sending specially crafted packets, an attacker can disrupt the availability of the device without any prior authentication or user interaction. The affected firmware versions include 1.80.xx and 1.81.xx, along with 1.82.02 and earlier versions of specific models. Users are advised to secure their network access and monitor for potential exploit attempts.

Affected Version(s)

SIEMENS LOGO!8 6ED1052-xyyxx-0BA8 FS:01 to FS:06 / Firmware version V1.80.xx and V1.81.xx

SIEMENS LOGO!8 6ED1052-xyy08-0BA0 FS:01 / Firmware version < V1.82.02

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.