CVE-2020-25243

IMPROPER LIMITATION OF A PATHNAME TO A RESTRICTED DIRECTORY ('PATH TRAVERSAL') CWE-22
A vulnerability could be triggered while importing a compromised project file to the affected software, which may allow the execution of commands on the system.

Risk Information

  • CVE ID
  • CVE-2020-25243
  • Vendor
  • Siemens
  • Product
  • LOGO! Soft Comfort
  • CVSS v3
  • 5.1