CVE-2017-2684

Published: Feb 22, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

Siemens SIMATIC Logon prior to V1.5 SP3 Update 2 could allow an attacker with knowledge of a valid user name, and physical or network access to the affected system, to bypass the application-level authentication.

Vendor	Product	Versions
n/a	SIMATIC Logon All versions < V1.5 SP3 Update 2	affected `SIMATIC Logon All versions < V1.5 SP3 Update 2`

Weaknesses (CWE)

CWE-592

References

96208

vdb-entry

x_refsource_BID

https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-931064.pdf

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-2684

Description

Affected Products

Weaknesses (CWE)

References