cpe:/a:siemens:simatic_logon:1.5:sp3_update_1 CVE-2017-2684 2017-02-21T21:59:00.153-05:00 2019-10-09T19:27:06.587-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov BID 96208 CONFIRM https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-931064.pdf Siemens SIMATIC Logon prior to V1.5 SP3 Update 2 could allow an attacker with knowledge of a valid user name, and physical or network access to the affected system, to bypass the application-level authentication.