← back
CVE-2017-2684

CVE-2017-2684

EPSS 2.0%CWE-592
Siemens SIMATIC Logon prior to V1.5 SP3 Update 2 could allow an attacker with knowledge of a valid user name, and physical or network access to the affected system, to bypass the application-level authentication.
Affected products
n/a · SIMATIC Logon All versions < V1.5 SP3 Update 2

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-931064.pdfhttp://www.securityfocus.com/bid/96208