CVE-2022-36363 Information

Description

A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions). Affected devices do not properly validate an offset value which can be defined in TCP packets when calling a method. This could allow an attacker to retrieve parts of the content of the memory.

Reference

https://cert-portal.siemens.com/productcert/pdf/ssa-955858.pdf