CVE-2022-36360

A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). Affected devices load firmware updates without checking the authenticity. Furthermore the integrity of the unencrypted firmware is only verified by a non-cryptographic method. This could allow an attacker to manipulate a firmware update and flash it to the device.
References
Configurations

Configuration 1


Information

Published : 2022-10-11 11:15

Updated : 2022-10-12 01:27


NVD link : CVE-2022-36360

Mitre link : CVE-2022-36360

Products Affected
No products.
CWE