Date published: 2017-08-30T15:29:00.273-04:00
Date last modified: 2017-09-13T13:44:54.873-04:00
CVSS Score: 5.0
Principal attack vector: NETWORK
Reference URL: http://www.securityfocus.com/bid/100560
Summary: A vulnerability has been identified in Siemens LOGO! devices before V1.81.2. An attacker with network access to the integrated web server on port 80/tcp could obtain the session ID of an active user session. A user must be logged in to the web interface. Siemens recommends to use the integrated webserver on port 80/tcp only in trusted networks.