Vulnerabilities > Siemens > Logo Soft Comfort
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-14 | CVE-2021-45046 | Expression Language Injection vulnerability in multiple products It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. | 9.0 |
| 2021-12-10 | CVE-2021-44228 | Deserialization of Untrusted Data vulnerability in multiple products Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. network low complexity apache siemens intel debian fedoraproject sonicwall netapp cisco snowsoftware bentley percussion CWE-502 critical | 10.0 |
| 2021-04-22 | CVE-2020-25244 | Uncontrolled Search Path Element vulnerability in Siemens Logo! Soft Comfort A vulnerability has been identified in LOGO! Soft Comfort (All versions < V8.4). | 8.4 |
| 2021-04-22 | CVE-2020-25243 | Path Traversal vulnerability in Siemens Logo! Soft Comfort A vulnerability has been identified in LOGO! Soft Comfort (All versions < V8.4). | 5.1 |
| 2020-12-14 | CVE-2020-25231 | Use of Hard-coded Cryptographic Key vulnerability in Siemens Logo! 8 BM Firmware and Logo! Soft Comfort A vulnerability has been identified in LOGO! 8 BM (incl. | 2.1 |
| 2019-05-14 | CVE-2019-10924 | Deserialization of Untrusted Data vulnerability in Siemens Logo! Soft Comfort A vulnerability has been identified in LOGO! Soft Comfort (All versions < V8.3). | 6.8 |
| 2017-12-26 | CVE-2017-12740 | Insufficient Verification of Data Authenticity vulnerability in Siemens Logo! Soft Comfort Siemens LOGO! Soft Comfort (All versions before V8.2) lacks integrity verification of software packages downloaded via an unprotected communication channel. | 4.3 |