Rewterz Threat Advisory – Multiple Cisco Security Vulnerabilities
July 16, 2020Rewterz Threat Advisory – Cisco Data Center Network Manager Cross-Site Scripting Vulnerabilities
July 16, 2020Rewterz Threat Advisory – Multiple Cisco Security Vulnerabilities
July 16, 2020Rewterz Threat Advisory – Cisco Data Center Network Manager Cross-Site Scripting Vulnerabilities
July 16, 2020Severity
High
Analysis Summary
A buffer overflow vulnerability in the Web Server functionality of the device allows an unauthenticated attacker to send specially crafted HTTP requests, which may cause memory corruption and result in remote code execution.
Impact
Remote code execution
Affected Vendors
Siemens
Affected Products
- LOGO Versions between 1.81.01 and 1.81.03
- Version 1.82.01
- Version 1.82.02
Remediation
Siemens recommends affected users update to the following versions:
Versions between 1.81.01 and 1.81.03: Update to v1.81.04
Version 1.82.01: Update to v1.82.03
Version 1.82.02: Update to v1.82.04