High severity7.5NVD Advisory· Published Dec 14, 2020· Updated Jun 17, 2026
CVE-2020-25229
CVE-2020-25229
Description
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). The implemented encryption for communication with affected devices is prone to replay attacks due to the usage of a static key. An attacker could change the password or change the configuration on any affected device if using prepared messages that were generated for another device.
Affected products
2- Range: <V8.3
- Siemens/LOGO! 8 BM (incl. SIPLUS variants)v5Range: All versions < V8.3
Patches
Vulnerability mechanics
References
1- cert-portal.siemens.com/productcert/pdf/ssa-480824.pdfnvdVendor Advisory
News mentions
0No linked articles in our index yet.