VAR-201905-1074
Vulnerability from variot - Updated: 2023-12-18 12:28A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). Project data stored on the device, which is accessible via port 10005/tcp, can be decrypted due to a hardcoded encryption key. The security vulnerability could be exploited by an unauthenticated attacker with network access to port 10005/tcp. No user interaction is required to exploit this security vulnerability. The vulnerability impacts confidentiality of the device. At the time of advisory publication no public exploitation of this security vulnerability was known. LOGO!8 is Siemens' 8th generation intelligent logic controller, which is a Nano PLC in the Siemens PLC family. It simplifies the programming configuration, the integrated panel can display more content, and can be easily networked through the integrated Ethernet interface. Efficient interconnection. An attacker can exploit these issues to obtain sensitive information. Successful exploits may lead to other attacks. All versions of LOGO!8 BM are vulnerable. This vulnerability stems from the lack of an effective trust management mechanism in network systems or products. Attackers can use default passwords or hard-coded passwords, hard-coded certificates, etc. to attack affected components
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201905-1074",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "logo\\!8 bm",
"scope": "lt",
"trust": 1.0,
"vendor": "siemens",
"version": "8.3"
},
{
"model": "logo\\!8 bm",
"scope": "eq",
"trust": 1.0,
"vendor": "siemens",
"version": "*"
},
{
"model": "logo! 8 bm",
"scope": null,
"trust": 0.8,
"vendor": "siemens",
"version": null
},
{
"model": "logo!8 bm",
"scope": null,
"trust": 0.6,
"vendor": "siemens",
"version": null
},
{
"model": "logo!8 bm",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "logo 8 bm",
"version": "*"
}
],
"sources": [
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "BID",
"id": "108382"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"db": "NVD",
"id": "CVE-2019-10920"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:logo\\!8_bm_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:siemens:logo\\!8_bm_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "8.3",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:logo\\!8_bm:*:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2019-10920"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Manuel Stotz and Matthias Deeg from SySS GmbH reported these vulnerabilities to Siemens.",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201905-599"
}
],
"trust": 0.6
},
"cve": "CVE-2019-10920",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"integrityImpact": "NONE",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "None",
"baseScore": 5.0,
"confidentialityImpact": "Partial",
"exploitabilityScore": null,
"id": "CVE-2019-10920",
"impactScore": null,
"integrityImpact": "None",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "Medium",
"trust": 0.9,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CNVD-2019-17522",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "5847bd4d-7106-4b17-b9fe-897506321608",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.2,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "VHN-142515",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:P/I:N/A:N",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "NVD",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
{
"attackComplexity": "Low",
"attackVector": "Network",
"author": "NVD",
"availabilityImpact": "None",
"baseScore": 7.5,
"baseSeverity": "High",
"confidentialityImpact": "High",
"exploitabilityScore": null,
"id": "CVE-2019-10920",
"impactScore": null,
"integrityImpact": "None",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
}
],
"severity": [
{
"author": "NVD",
"id": "CVE-2019-10920",
"trust": 1.8,
"value": "HIGH"
},
{
"author": "CNVD",
"id": "CNVD-2019-17522",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201905-599",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608",
"trust": 0.2,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-142515",
"trust": 0.1,
"value": "MEDIUM"
},
{
"author": "VULMON",
"id": "CVE-2019-10920",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "VULHUB",
"id": "VHN-142515"
},
{
"db": "VULMON",
"id": "CVE-2019-10920"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"db": "NVD",
"id": "CVE-2019-10920"
},
{
"db": "CNNVD",
"id": "CNNVD-201905-599"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions \u003c V8.3). Project data stored on the device, which is accessible via port 10005/tcp, can be decrypted due to a hardcoded encryption key. The security vulnerability could be exploited by an unauthenticated attacker with network access to port 10005/tcp. No user interaction is required to exploit this security vulnerability. The vulnerability impacts confidentiality of the device. At the time of advisory publication no public exploitation of this security vulnerability was known. LOGO!8 is Siemens\u0027 8th generation intelligent logic controller, which is a Nano PLC in the Siemens PLC family. It simplifies the programming configuration, the integrated panel can display more content, and can be easily networked through the integrated Ethernet interface. Efficient interconnection. \nAn attacker can exploit these issues to obtain sensitive information. Successful exploits may lead to other attacks. \nAll versions of LOGO!8 BM are vulnerable. This vulnerability stems from the lack of an effective trust management mechanism in network systems or products. Attackers can use default passwords or hard-coded passwords, hard-coded certificates, etc. to attack affected components",
"sources": [
{
"db": "NVD",
"id": "CVE-2019-10920"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "BID",
"id": "108382"
},
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "VULHUB",
"id": "VHN-142515"
},
{
"db": "VULMON",
"id": "CVE-2019-10920"
}
],
"trust": 2.79
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2019-10920",
"trust": 3.7
},
{
"db": "SIEMENS",
"id": "SSA-542701",
"trust": 2.4
},
{
"db": "BID",
"id": "108382",
"trust": 2.1
},
{
"db": "PACKETSTORM",
"id": "153122",
"trust": 1.8
},
{
"db": "ICS CERT",
"id": "ICSA-19-134-04",
"trust": 1.8
},
{
"db": "CNNVD",
"id": "CNNVD-201905-599",
"trust": 0.9
},
{
"db": "CNVD",
"id": "CNVD-2019-17522",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557",
"trust": 0.8
},
{
"db": "ICS CERT",
"id": "ICSA-19-134-02",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2019.1716.2",
"trust": 0.6
},
{
"db": "IVD",
"id": "5847BD4D-7106-4B17-B9FE-897506321608",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-142515",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2019-10920",
"trust": 0.1
}
],
"sources": [
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "VULHUB",
"id": "VHN-142515"
},
{
"db": "VULMON",
"id": "CVE-2019-10920"
},
{
"db": "BID",
"id": "108382"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"db": "NVD",
"id": "CVE-2019-10920"
},
{
"db": "CNNVD",
"id": "CNNVD-201905-599"
}
]
},
"id": "VAR-201905-1074",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "VULHUB",
"id": "VHN-142515"
}
],
"trust": 1.6913690200000002
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.8
}
],
"sources": [
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
}
]
},
"last_update_date": "2023-12-18T12:28:16.020000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "SSA-542701",
"trust": 0.8,
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-542701.pdf"
},
{
"title": "Siemens LOGO! 8 BM Information Disclosure Vulnerability Patch",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/163683"
},
{
"title": "Siemens Security Advisories: Siemens Security Advisory",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=f5fb9ce0e2d1f9a70355e7812f9314f9"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "VULMON",
"id": "CVE-2019-10920"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-321",
"trust": 1.0
},
{
"problemtype": "CWE-798",
"trust": 0.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-142515"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"db": "NVD",
"id": "CVE-2019-10920"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.1,
"url": "http://packetstormsecurity.com/files/153122/siemens-logo-8-hard-coded-cryptographic-key.html"
},
{
"trust": 3.0,
"url": "http://www.securityfocus.com/bid/108382"
},
{
"trust": 2.4,
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-542701.pdf"
},
{
"trust": 1.8,
"url": "https://seclists.org/bugtraq/2019/may/72"
},
{
"trust": 1.8,
"url": "http://seclists.org/fulldisclosure/2019/may/44"
},
{
"trust": 1.4,
"url": "https://nvd.nist.gov/vuln/detail/cve-2019-10920"
},
{
"trust": 1.0,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-19-134-04"
},
{
"trust": 0.9,
"url": "http://www.siemens.com/"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-10920"
},
{
"trust": 0.8,
"url": "https://www.us-cert.gov/ics/advisories/icsa-19-134-04"
},
{
"trust": 0.6,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-19-134-02-0"
},
{
"trust": 0.6,
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-19-134-04"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/80946"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/321.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "VULHUB",
"id": "VHN-142515"
},
{
"db": "VULMON",
"id": "CVE-2019-10920"
},
{
"db": "BID",
"id": "108382"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"db": "NVD",
"id": "CVE-2019-10920"
},
{
"db": "CNNVD",
"id": "CNNVD-201905-599"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"db": "VULHUB",
"id": "VHN-142515"
},
{
"db": "VULMON",
"id": "CVE-2019-10920"
},
{
"db": "BID",
"id": "108382"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"db": "NVD",
"id": "CVE-2019-10920"
},
{
"db": "CNNVD",
"id": "CNNVD-201905-599"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2019-06-16T00:00:00",
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"date": "2019-05-22T00:00:00",
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"date": "2019-05-14T00:00:00",
"db": "VULHUB",
"id": "VHN-142515"
},
{
"date": "2019-05-14T00:00:00",
"db": "VULMON",
"id": "CVE-2019-10920"
},
{
"date": "2019-05-14T00:00:00",
"db": "BID",
"id": "108382"
},
{
"date": "2019-06-04T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"date": "2019-05-14T20:29:02.637000",
"db": "NVD",
"id": "CVE-2019-10920"
},
{
"date": "2019-05-14T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201905-599"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2019-06-16T00:00:00",
"db": "CNVD",
"id": "CNVD-2019-17522"
},
{
"date": "2019-05-30T00:00:00",
"db": "VULHUB",
"id": "VHN-142515"
},
{
"date": "2022-01-04T00:00:00",
"db": "VULMON",
"id": "CVE-2019-10920"
},
{
"date": "2019-05-14T00:00:00",
"db": "BID",
"id": "108382"
},
{
"date": "2019-07-08T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2019-004557"
},
{
"date": "2022-01-04T18:10:56.570000",
"db": "NVD",
"id": "CVE-2019-10920"
},
{
"date": "2020-12-15T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201905-599"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201905-599"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Siemens LOGO!8 BM Information Disclosure Vulnerability",
"sources": [
{
"db": "IVD",
"id": "5847bd4d-7106-4b17-b9fe-897506321608"
},
{
"db": "CNVD",
"id": "CNVD-2019-17522"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "trust management problem",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201905-599"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…