Vulnerability CVE-2022-36361
Published: 2022-10-11

Description:
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions). Affected devices do not properly validate the structure of TCP packets in several methods. This could allow an attacker to cause buffer overflows, get control over the instruction counter and run custom code.

Type:

CWE-120

 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'))

 References:
https://cert-portal.siemens.com/productcert/pdf/ssa-955858.pdf
Copyright 2024, cxsecurity.com

 

Back to Top