CNNVD-202511-991 Information
CNNVD ID
CNNVD-202511-991
Related CVE
- CNNVD Published: 2025-11-11
Description (Chinese)
Siemens LOGO!是德国西门子(Siemens)公司的一款可编程逻辑控制器。 Siemens LOGO!存在访问控制错误漏洞,该漏洞源于未进行某些验证,可能导致未经验证的远程攻击者更改设备时间,进而影响设备行为。以下产品受到影响:LOGO!12/24RCE、LOGO!12/24RCEo、LOGO!230RCE、LOGO!230RCEo、LOGO!24CE、LOGO!24CEo、LOGO!24RCE、SIPLUS LOGO!12/24RCE、SIPLUS LOGO!12/24RCEo、SIPLUS LOGO!230RCE、SIPLUS LOGO!230RCEo、SIPLUS LOGO!24CE、SIPLUS LOGO! 24CEo、SIPLUS LOGO!24RCE和SIPLUS LOGO!24RCEo。
Description (English)
Siemens Logo! A programmable logical controller for Siemens, Germany. Siemens Logo! There is a bug in access control, which stems from the absence of certain verifications, which may result in unverified remote assailants changing the time of the equipment, thereby affecting its behaviour. The following products have been affected: LOGO 12/24RCE, LOGO 12/24RCEO, LOGO 230RCE, LOGO 230RCEO, LOGO!24CE, LOGO 24CO 24RCE 24
Hazard Level
High
Vulnerability Type
访问控制错误
Affected Vendor
西门子
Published
2025-11-11
Last Modified
2026-02-24
References
https://cert-portal.siemens.com/productcert/html/ssa-267056.html https://access.redhat.com/security/cve/cve-2025-40817
Patch
https://www.siemens.com/global/en/products/services/cert.html?s=SSA-267056#SiemensSecurityAdvisories
Share on: