|
210511
|
5.5 |
MEDIUM
Local
|
siemens
|
logo\!_8_bm_firmware
|
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). The firmware update of affected devices contains the private RSA key that is used as a basis for encry…
|
-
|
CVE-2020-25233
|
2024-11-21 14:17 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210512
|
7.5 |
HIGH
Network
|
siemens
|
logo\!_8_bm_firmware
|
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). Due to the usage of an insecure random number generation function and a deprecated cryptographic funct…
|
-
|
CVE-2020-25232
|
2024-11-21 14:17 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210513
|
5.5 |
MEDIUM
Local
|
siemens
|
logo\!_8_bm_firmware
logo\!_soft_comfort
|
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3), LOGO! Soft Comfort (All versions < V8.3). The encryption of program data for the affected devices uses…
|
-
|
CVE-2020-25231
|
2024-11-21 14:17 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210514
|
7.5 |
HIGH
Network
|
siemens
|
logo\!_8_bm_firmware
|
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). Due to the usage of an outdated cipher mode on port 10005/tcp, an attacker could extract the encryptio…
|
-
|
CVE-2020-25230
|
2024-11-21 14:17 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210515
|
7.5 |
HIGH
Network
|
siemens
|
logo\!_8_bm_firmware
|
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). The implemented encryption for communication with affected devices is prone to replay attacks due to t…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2020-25229
|
2024-11-21 14:17 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210516
|
9.8 |
CRITICAL
Network
|
siemens
|
logo\!_8_bm_firmware
|
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). A service available on port 10005/tcp of the affected devices could allow complete access to all servi…
|
-
|
CVE-2020-25228
|
2024-11-21 14:17 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210517
|
9.8 |
CRITICAL
Network
|
medtronic
|
mycarelink_smart_model_25000_firmware
|
Medtronic MyCareLink Smart 25000 all versions are vulnerable when an attacker who gains auth runs a debug command, which is sent to the reader causing heap overflow in the MCL Smart Reader stack. A h…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-25187
|
2024-11-21 14:17 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210518
|
8.8 |
HIGH
Adjacent
|
medtronic
|
mycarelink_smart_model_25000_firmware
|
Medtronic MyCareLink Smart 25000 all versions contain an authentication protocol vuln where the method used to auth between MCL Smart Patient Reader and MyCareLink Smart mobile app is vulnerable to b…
|
CWE-287
Improper Authentication
|
CVE-2020-25183
|
2024-11-21 14:17 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210519
|
9.8 |
CRITICAL
Network
|
gehealthcare
|
3.0t_signa_hdxt_firmware
3.0t_signa_hd_16_firmware
3.0t_signa_hd_23_firmware
1.5t_brivo_mr355_firmware
optima_mr360_firmware
signa_hdi_1.5t_firmware
signa_vibrant_firmware
logiq_…
|
GE Healthcare Imaging and Ultrasound Products may allow specific credentials to be exposed during transport over the network.
|
CWE-200
Information Exposure
|
CVE-2020-25179
|
2024-11-21 14:17 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210520
|
9.8 |
CRITICAL
Network
|
gehealthcare
|
3.0t_signa_hdxt_firmware
3.0t_signa_hd_16_firmware
3.0t_signa_hd_23_firmware
1.5t_brivo_mr355_firmware
optima_mr360_firmware
signa_hdi_1.5t_firmware
signa_vibrant_firmware
logiq_…
|
GE Healthcare Imaging and Ultrasound Products may allow specific credentials to be exposed during transport over the network.
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2020-25175
|
2024-11-21 14:17 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
