CNNVD-202511-992 Information
CNNVD ID
CNNVD-202511-992
Related CVE
- CNNVD Published: 2025-11-11
Description (Chinese)
Siemens LOGO!是德国西门子(Siemens)公司的一款可编程逻辑控制器。 Siemens LOGO!存在访问控制错误漏洞,该漏洞源于未经验证的远程攻击者可操纵设备IP地址,导致设备不可访问。以下产品受到影响:LOGO!12/24RCE、LOGO!12/24RCEo、LOGO!230RCE、LOGO!230RCEo、LOGO!24CE、LOGO!24CEo、LOGO!24RCE、SIPLUS LOGO!12/24RCE、SIPLUS LOGO!12/24RCEo、SIPLUS LOGO!230RCE、SIPLUS LOGO!230RCEo、SIPLUS LOGO!24CE、SIPLUS LOGO! 24CEo、SIPLUS LOGO!24RCE和SIPLUS LOGO!24RCEo。
Description (English)
Siemens Logo! A programmable logical controller for Siemens, Germany. Siemens Logo! There is a bug in access control, which stems from unverified remote assailants manipulating the IP address of the device, which makes it inaccessible. The following products have been affected: LOGO 12/24RCE, LOGO 12/24RCEO, LOGO 230RCE, LOGO 230RCEO, LOGO!24CE, LOGO 24CO 24RCE 24
Hazard Level
Medium
Vulnerability Type
访问控制错误
Affected Vendor
西门子
Published
2025-11-11
Last Modified
2026-02-24
References
https://cert-portal.siemens.com/productcert/html/ssa-267056.html https://access.redhat.com/security/cve/cve-2025-40816
Patch
https://www.siemens.com/global/en/products/services/cert.html?s=SSA-267056#SiemensSecurityAdvisories
Share on: