Siemens SIMATIC Logon prior to V1.5 SP3 Update 2 could allow an attacker with knowledge of a valid user name, and physical or network access to the affected system, to bypass the application-level authentication.
[
{
"product": "SIMATIC Logon All versions < V1.5 SP3 Update 2",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "SIMATIC Logon All versions < V1.5 SP3 Update 2"
}
]
}
]