CVE-2021-31890

09.11.2021, 12:15

A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), PLUSCONTROL 1st Gen (All versions), SIMOTICS CONNECT 400 (All versions < V0.5.0.0), SIMOTICS CONNECT 400 (All versions < V1.0.0.0). The total length of an TCP payload (set in the IP header) is unchecked. This may lead to various side effects, including Information Leak and Denial-of-Service conditions, depending on the network buffer organization in memory. (FSMD-2021-0017)

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
siemens	CNA	7.5 HIGH				CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 68%

Vendor	Product	Version
siemens	capital_vstar	*
siemens	nucleus_net	*
siemens	nucleus_readystart_v3	𝑥 < 2017.02.4
siemens	nucleus_readystart_v4	𝑥 < 4.1.1
siemens	nucleus_source_code	*
siemens	apogee_modular_building_controller_firmware	*
siemens	apogee_modular_equiment_controller_firmware	*
siemens	apogee_pxc_compact_firmware	*
siemens	apogee_pxc_modular_firmware	*
siemens	talon_tc_compact_firmware	*
siemens	talon_tc_modular_firmware	*