Search criteria
3 vulnerabilities found for pha_firmware by pepperl-fuchs
FKIE_CVE-2021-20986
Vulnerability from fkie_nvd - Published: 2021-02-16 17:15 - Updated: 2024-11-21 05:47
Severity ?
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
A Denial of Service vulnerability was found in Hilscher PROFINET IO Device V3 in versions prior to V3.14.0.7. This may lead to unexpected loss of cyclic communication or interruption of acyclic communication.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hilscher:profinet_io_device_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "94E2418D-7518-40DA-936F-83A9473083F8",
"versionEndExcluding": "3.14.0.7",
"versionStartIncluding": "3.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hilscher:profinet_io_device:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F25E84F4-ACBA-42D9-8DBE-CD6E491D0B12",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pgv100-f200a-b17-v1d_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "EADBDFE4-E2C8-4845-B646-E4F797A81DDB",
"versionEndIncluding": "2.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pgv100-f200a-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7820B671-3B36-4B9C-AF5E-99FB32B17A7D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pgv150i-f200a-b17-v1d_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "BA3E85D2-9B42-4D09-B65B-7809D039BFD7",
"versionEndIncluding": "2.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pgv150i-f200a-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ACE49394-30F2-4A4A-83ED-7E629F905888",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pgv100-f200-b17-v1d-7477_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0764F7F2-E82C-4100-8612-F09854DD3D58",
"versionEndIncluding": "2.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pgv100-f200-b17-v1d-7477:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FFE18C0A-FF70-4908-BDAF-3B8A8F4B7B4E",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pxv100-f200-b17-v1d_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "68591B76-5CB4-428A-AD7F-12BC0C7B244C",
"versionEndIncluding": "4.2.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pxv100-f200-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "66B65D25-D329-4F76-AB8E-A638F67662D7",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pxv100-f200-b17-v1d-3636_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0B0D5FCE-9DA2-4368-9826-6E74B141F3CF",
"versionEndIncluding": "4.2.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pxv100-f200-b17-v1d-3636:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AEC410A7-CDCB-4FC8-B7E4-D36E64C18514",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pcv80-f200-b17-v1d_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "79A7D56B-9917-4221-B60F-691F0B86F69D",
"versionEndIncluding": "3.2.3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pcv80-f200-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "30626D56-330A-40A9-AACA-1A220807E9AF",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pcv100-f200-b17-v1d_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "72EBE6E8-120C-4D79-AE06-99C9E2AF9B5B",
"versionEndIncluding": "3.2.3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pcv100-f200-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2B112346-D300-44E1-93A8-28EEFA051D17",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pcv50-f200-b17-v1d_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "87151D45-4150-4938-9761-99458D85226A",
"versionEndIncluding": "3.2.3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pcv50-f200-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "80CDDEFC-7E12-4219-971F-3B65773CBAFA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pcv100-f200-b17-v1d-6011-6997_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "FFE4A4E5-8DAD-4CFA-8667-183174259BB1",
"versionEndIncluding": "3.2.3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pcv100-f200-b17-v1d-6011-6997:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FDCEFC26-0059-46A4-958F-4FF0967FCDA1",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pcv100-f200-b17-v1d-6011_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E6DE232C-C5ED-41C1-8E9B-FBFAD96A7654",
"versionEndIncluding": "3.2.5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pcv100-f200-b17-v1d-6011:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D04FCC36-6058-41A2-9010-46EEE9F15A3E",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pcv100-f200-b17-v1d-6011-8203_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6168758B-2968-4961-ACF7-B2371E7518B9",
"versionEndIncluding": "3.2.5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pcv100-f200-b17-v1d-6011-8203:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9973B3F1-D71A-4117-A04E-DA0937D6979E",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pxv100a-f200-b28-v1d_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "EC8D884C-73DC-48A2-8E52-013B7EA29E8F",
"versionEndIncluding": "1.0.3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pxv100a-f200-b28-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C743A5C3-7B1A-4E87-8BA1-FB10C258B0A7",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pxv100a-f200-b28-v1d-6011_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "F0D49EA3-9A07-4C3B-97CB-1D3906A674E6",
"versionEndIncluding": "1.0.3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pxv100a-f200-b28-v1d-6011:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C43D66DD-07DA-4E26-B51F-CE15A9CBB770",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pgv100a-f200-b28-v1d_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "48ABA114-93E1-418B-8006-5AC79CAFFD2D",
"versionEndIncluding": "1.0.3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pgv100a-f200-b28-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C7B54DE8-7555-42B8-8960-085CED675897",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pgv100a-f200a-b28-v1d_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8B0A7DA2-143C-4E31-8E9E-5960D3FDFA8B",
"versionEndIncluding": "1.0.3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pgv100a-f200a-b28-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "02679097-13BD-4867-9D1E-D069131019CD",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pgv100aq-f200a-b28-v1d_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "9D7244F0-967F-47F4-85E1-6B5FC01595A3",
"versionEndIncluding": "2.1.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pgv100aq-f200a-b28-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "32460D01-AFE8-4B0F-B65B-BA58D47D2687",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pgv100aq-f200-b28-v1d_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2B836CA6-38D8-441D-8DBC-DE0A64A58E03",
"versionEndIncluding": "2.1.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pgv100aq-f200-b28-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "34E07DB5-9D46-4159-84A6-8145DDA4A0F2",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pxv100aq-f200-b28-v1d_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "27E38BA2-FAE8-4355-A351-88744B3B6670",
"versionEndIncluding": "2.1.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pxv100aq-f200-b28-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4D9600E1-845A-4404-905A-42C9761620FC",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pxv100aq-f200-b28-v1d-6011_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "58510D41-8212-44B0-B9EF-CB30F53DA921",
"versionEndIncluding": "2.1.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pxv100aq-f200-b28-v1d-6011:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AD1ACB11-4365-4FEF-AC2A-2EB4721F3F91",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:ohv-f230-b17_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "279998E5-5DCB-415A-AB1E-840100A803E8",
"versionEndIncluding": "1.1.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:ohv-f230-b17:-:*:*:*:*:*:*:*",
"matchCriteriaId": "627BECB8-5689-4F88-9404-7EF16EE70434",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:oit500-f113b17-cb_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C593C217-FDCF-403C-92D0-5221F66342C3",
"versionEndIncluding": "1.3.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:oit500-f113b17-cb:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3A2B6391-9F15-4DFE-99A5-4440873AD44D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:pha_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "96B9CEFE-9C75-4279-976C-A4830E2906C8",
"versionEndIncluding": "3.1.5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha150-f200-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3B4C008E-C31C-4788-BAE0-C9960FB318A9",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha150-f200a-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "037EDAB3-DC96-49D0-86E8-9D6D8033D314",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha200-f200-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AB81E2ED-A3D8-4D20-AD1F-610DDC6789C8",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha200-f200a-b17-t-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F430258E-0ADE-4ACB-BF48-2FBE368381E7",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha200-f200a-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "65C00E2D-1C87-48DE-B7BF-AF1CD5C1F47F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha300-f200-b17-t-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EAD0F1E5-3323-4AA1-BF20-B2111BFF8B0E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha300-f200-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E1E9EFD8-E0D1-4860-91CB-2CD55B12668E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha300-f200a-b17-t-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0B8A275A-11B6-4000-AB96-E6D19DF31021",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha300-f200a-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9601FE8F-AD3F-40F9-B9D5-58AAE81593F6",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha400-f200-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9FB5BB1C-3A52-44E5-BC6A-BA5BFE8F7A8A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha400-f200a-b17-t-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F942041F-1E10-4171-BA81-74CCDBEC0EF5",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha400-f200a-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "104373CF-567C-4AFD-8E53-7DF1DE5F977D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha500-f200-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4C7C8345-8E3B-4A40-9E64-C4549845CFE3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha500-f200a-b17-t-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DA36B79E-B922-4DFB-A50A-92C6A8282B97",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha500-f200a-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F08D2B93-201A-4020-A395-3AC1DB2F3BEA",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha600-f200-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0DA38FEF-041D-4A96-89AA-591B7E9768D1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha600-f200a-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BE576C56-A5AC-40D9-BE06-D58DD3D3BA84",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha700-f200-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "458EA429-3D7D-4517-A3CB-A3E84B090FD5",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:pha800-f200-b17-v1d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "099D8DF5-FED9-4689-9E18-2FF235803089",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:pepperl-fuchs:wcs_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5AD9ED51-C1E2-416C-AE52-81900D7F1D39",
"versionEndIncluding": "3.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:pepperl-fuchs:wcs3b-ls610:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DC5BBD05-EF10-4DDB-A1D3-5E1E902F65FA",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:wcs3b-ls610-om:-:*:*:*:*:*:*:*",
"matchCriteriaId": "763E39F6-B1FE-45A7-8578-6ADDA9968F1A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:wcs3b-ls610d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "86638FFD-6080-43F1-B4BC-8B6F9AFFFDB5",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:wcs3b-ls610d-om:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F9651E8F-0074-4C00-AC43-5F6F3E8A3F6F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:wcs3b-ls610dh:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6CE03C43-E1A4-4BEE-A2F0-2DA3637A1866",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:wcs3b-ls610dh-om:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4E8C6F65-CADD-45AC-9B5C-A9C278217D78",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:wcs3b-ls610h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "38D960E9-8EA7-417B-8897-B55D7866367B",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:pepperl-fuchs:wcs3b-ls610h-om:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AC8F378E-D294-4A2F-90D7-ADE345DC4A9D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A Denial of Service vulnerability was found in Hilscher PROFINET IO Device V3 in versions prior to V3.14.0.7. This may lead to unexpected loss of cyclic communication or interruption of acyclic communication."
},
{
"lang": "es",
"value": "Se encontr\u00f3 una vulnerabilidad de Denegaci\u00f3n de Servicio en Hilscher PROFINET IO Device versiones V3 anteriores a V3.14.0.7. Esto puede conllevar a una p\u00e9rdida inesperada de la comunicaci\u00f3n c\u00edclica o a una interrupci\u00f3n de la comunicaci\u00f3n ac\u00edclica"
}
],
"id": "CVE-2021-20986",
"lastModified": "2024-11-21T05:47:20.170",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "info@cert.vde.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-02-16T17:15:12.817",
"references": [
{
"source": "info@cert.vde.com",
"tags": [
"Third Party Advisory"
],
"url": "https://cert.vde.com/en-us/advisories/vde-2021-006"
},
{
"source": "info@cert.vde.com",
"tags": [
"Vendor Advisory"
],
"url": "https://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://cert.vde.com/en-us/advisories/vde-2021-006"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device"
}
],
"sourceIdentifier": "info@cert.vde.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
],
"source": "info@cert.vde.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
CVE-2021-20986 (GCVE-0-2021-20986)
Vulnerability from cvelistv5 – Published: 2021-02-16 16:35 – Updated: 2024-09-16 23:46
VLAI?
Title
Hilscher: Denial of Service vulnerability in PROFINET IO Device
Summary
A Denial of Service vulnerability was found in Hilscher PROFINET IO Device V3 in versions prior to V3.14.0.7. This may lead to unexpected loss of cyclic communication or interruption of acyclic communication.
Severity ?
7.5 (High)
CWE
- CWE-787 - Out-of-bounds Write
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Impacted products
| Vendor | Product | Version | ||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Hilscher | PROFINET IO Device |
Affected:
V3 , < V3.14.0.7
(custom)
|
||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T17:53:23.078Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://cert.vde.com/en-us/advisories/vde-2021-006"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "PROFINET IO Device",
"vendor": "Hilscher",
"versions": [
{
"lessThan": "V3.14.0.7",
"status": "affected",
"version": "V3",
"versionType": "custom"
}
]
},
{
"product": "PCV/PXV/PGV",
"vendor": "Pepper+Fuchs",
"versions": [
{
"lessThanOrEqual": "V2.0.0",
"status": "affected",
"version": "PGV100-F200A-B17-V1D, PGV150I-F200A-B17-V1D, PGV100-F200-B17-V1D-7477",
"versionType": "custom"
},
{
"lessThanOrEqual": "V4.2.0",
"status": "affected",
"version": "PXV100-F200-B17-V1D, PXV100-F200-B17-V1D-3636",
"versionType": "custom"
},
{
"lessThanOrEqual": "V3.2.3",
"status": "affected",
"version": "PCV80-F200-B17-V1D, PCV100-F200-B17-V1D, PCV50-F200-B17-V1D, PCV100-F200-B17-V1D-6011-6997",
"versionType": "custom"
},
{
"lessThanOrEqual": "V3.2.5",
"status": "affected",
"version": "PCV100-F200-B17-V1D-6011, PCV100-F200-B17-V1D-6011-8203",
"versionType": "custom"
}
]
},
{
"product": "PXV/PGV B28 Profisafe",
"vendor": "Pepper+Fuchs",
"versions": [
{
"lessThanOrEqual": "V1.0.3",
"status": "affected",
"version": "PXV100A-F200-B28-V1D, PXV100A-F200-B28-V1D-6011, PGV100A-F200-B28-V1D, PGV100A-F200A-B28-V1D",
"versionType": "custom"
},
{
"lessThanOrEqual": "V2.1.1",
"status": "affected",
"version": "PGV100AQ-F200A-B28-V1D, PGV100AQ-F200-B28-V1D, PXV100AQ-F200-B28-V1D, PXV100AQ-F200-B28-V1D-6011",
"versionType": "custom"
}
]
},
{
"product": "OHV",
"vendor": "Pepper+Fuchs",
"versions": [
{
"lessThanOrEqual": "V1.1.0",
"status": "affected",
"version": "OHV-F230-B17",
"versionType": "custom"
}
]
},
{
"product": "OIT",
"vendor": "Pepper+Fuchs",
"versions": [
{
"lessThanOrEqual": "V1.3.4",
"status": "affected",
"version": "OIT500-F113-B17-CB",
"versionType": "custom"
}
]
},
{
"product": "PHA",
"vendor": "Pepper+Fuchs",
"versions": [
{
"lessThanOrEqual": "V3.1.5",
"status": "affected",
"version": "PHA300-F200-B17-V1D, PHA400-F200-B17-V1D, PHA300-F200A-B17-V1D, PHA300-F200-B17-T-V1D, PHA200-F200A-B17-V1D, PHA200-F200-B17-V1D, PHA400-F200A-B17-V1D, PHA300-F200A-B17-T-V1D, PHA600-F200A-B17-V1D, PHA500-F200-B17-V1D, PHA500-F200A-B17-V1D, PHA600-F200-B17-V1D, PHA150-F200A-B17-V1D, PHA200-F200A-B17-T-V1D, PHA150-F200-B17-V1D, PHA800-F200-B17-V1D, PHA400-F200A-B17-T-V1D, PHA500-F200A-B17-T-V1D, PHA700-F200-B17-V1D",
"versionType": "custom"
}
]
},
{
"product": "WCS",
"vendor": "Pepper+Fuchs",
"versions": [
{
"lessThanOrEqual": "V3.0.0",
"status": "affected",
"version": "WCS3B-LS610, WCS3B-LS610H, WCS3B-LS610D, WCS3B-LS610DH, WCS3B-LS610H-OM, WCS3B-LS610DH-OM, WCS3B-LS610D-OM, CS3B-LS610-OM",
"versionType": "custom"
}
]
}
],
"datePublic": "2021-02-15T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "A Denial of Service vulnerability was found in Hilscher PROFINET IO Device V3 in versions prior to V3.14.0.7. This may lead to unexpected loss of cyclic communication or interruption of acyclic communication."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-787",
"description": "CWE-787 Out-of-bounds Write",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-02-16T16:35:48",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://cert.vde.com/en-us/advisories/vde-2021-006"
}
],
"source": {
"advisory": "vde-2021-006",
"defect": [
"vde-2021-006"
],
"discovery": "UNKNOWN"
},
"title": "Hilscher: Denial of Service vulnerability in PROFINET IO Device",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "info@cert.vde.com",
"DATE_PUBLIC": "2021-02-15T13:00:00.000Z",
"ID": "CVE-2021-20986",
"STATE": "PUBLIC",
"TITLE": "Hilscher: Denial of Service vulnerability in PROFINET IO Device"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "PROFINET IO Device",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "V3",
"version_value": "V3.14.0.7"
}
]
}
}
]
},
"vendor_name": "Hilscher"
},
{
"product": {
"product_data": [
{
"product_name": "PCV/PXV/PGV",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "PGV100-F200A-B17-V1D, PGV150I-F200A-B17-V1D, PGV100-F200-B17-V1D-7477",
"version_value": "V2.0.0"
},
{
"version_affected": "\u003c=",
"version_name": "PXV100-F200-B17-V1D, PXV100-F200-B17-V1D-3636",
"version_value": "V4.2.0"
},
{
"version_affected": "\u003c=",
"version_name": "PCV80-F200-B17-V1D, PCV100-F200-B17-V1D, PCV50-F200-B17-V1D, PCV100-F200-B17-V1D-6011-6997",
"version_value": "V3.2.3"
},
{
"version_affected": "\u003c=",
"version_name": "PCV100-F200-B17-V1D-6011, PCV100-F200-B17-V1D-6011-8203",
"version_value": "V3.2.5"
}
]
}
},
{
"product_name": "PXV/PGV B28 Profisafe",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "PXV100A-F200-B28-V1D, PXV100A-F200-B28-V1D-6011, PGV100A-F200-B28-V1D, PGV100A-F200A-B28-V1D",
"version_value": "V1.0.3"
},
{
"version_affected": "\u003c=",
"version_name": "PGV100AQ-F200A-B28-V1D, PGV100AQ-F200-B28-V1D, PXV100AQ-F200-B28-V1D, PXV100AQ-F200-B28-V1D-6011",
"version_value": "V2.1.1"
}
]
}
},
{
"product_name": "OHV",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "OHV-F230-B17",
"version_value": "V1.1.0"
}
]
}
},
{
"product_name": "OIT",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "OIT500-F113-B17-CB",
"version_value": "V1.3.4"
}
]
}
},
{
"product_name": "PHA",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "PHA300-F200-B17-V1D, PHA400-F200-B17-V1D, PHA300-F200A-B17-V1D, PHA300-F200-B17-T-V1D, PHA200-F200A-B17-V1D, PHA200-F200-B17-V1D, PHA400-F200A-B17-V1D, PHA300-F200A-B17-T-V1D, PHA600-F200A-B17-V1D, PHA500-F200-B17-V1D, PHA500-F200A-B17-V1D, PHA600-F200-B17-V1D, PHA150-F200A-B17-V1D, PHA200-F200A-B17-T-V1D, PHA150-F200-B17-V1D, PHA800-F200-B17-V1D, PHA400-F200A-B17-T-V1D, PHA500-F200A-B17-T-V1D, PHA700-F200-B17-V1D",
"version_value": "V3.1.5"
}
]
}
},
{
"product_name": "WCS",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "WCS3B-LS610, WCS3B-LS610H, WCS3B-LS610D, WCS3B-LS610DH, WCS3B-LS610H-OM, WCS3B-LS610DH-OM, WCS3B-LS610D-OM, CS3B-LS610-OM",
"version_value": "V3.0.0"
}
]
}
}
]
},
"vendor_name": "Pepper+Fuchs"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A Denial of Service vulnerability was found in Hilscher PROFINET IO Device V3 in versions prior to V3.14.0.7. This may lead to unexpected loss of cyclic communication or interruption of acyclic communication."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-787 Out-of-bounds Write"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device",
"refsource": "CONFIRM",
"url": "https://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device"
},
{
"name": "https://cert.vde.com/en-us/advisories/vde-2021-006",
"refsource": "CONFIRM",
"url": "https://cert.vde.com/en-us/advisories/vde-2021-006"
}
]
},
"source": {
"advisory": "vde-2021-006",
"defect": [
"vde-2021-006"
],
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2021-20986",
"datePublished": "2021-02-16T16:35:48.460903Z",
"dateReserved": "2020-12-17T00:00:00",
"dateUpdated": "2024-09-16T23:46:42.601Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-20986 (GCVE-0-2021-20986)
Vulnerability from nvd – Published: 2021-02-16 16:35 – Updated: 2024-09-16 23:46
VLAI?
Title
Hilscher: Denial of Service vulnerability in PROFINET IO Device
Summary
A Denial of Service vulnerability was found in Hilscher PROFINET IO Device V3 in versions prior to V3.14.0.7. This may lead to unexpected loss of cyclic communication or interruption of acyclic communication.
Severity ?
7.5 (High)
CWE
- CWE-787 - Out-of-bounds Write
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Impacted products
| Vendor | Product | Version | ||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Hilscher | PROFINET IO Device |
Affected:
V3 , < V3.14.0.7
(custom)
|
||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T17:53:23.078Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://cert.vde.com/en-us/advisories/vde-2021-006"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "PROFINET IO Device",
"vendor": "Hilscher",
"versions": [
{
"lessThan": "V3.14.0.7",
"status": "affected",
"version": "V3",
"versionType": "custom"
}
]
},
{
"product": "PCV/PXV/PGV",
"vendor": "Pepper+Fuchs",
"versions": [
{
"lessThanOrEqual": "V2.0.0",
"status": "affected",
"version": "PGV100-F200A-B17-V1D, PGV150I-F200A-B17-V1D, PGV100-F200-B17-V1D-7477",
"versionType": "custom"
},
{
"lessThanOrEqual": "V4.2.0",
"status": "affected",
"version": "PXV100-F200-B17-V1D, PXV100-F200-B17-V1D-3636",
"versionType": "custom"
},
{
"lessThanOrEqual": "V3.2.3",
"status": "affected",
"version": "PCV80-F200-B17-V1D, PCV100-F200-B17-V1D, PCV50-F200-B17-V1D, PCV100-F200-B17-V1D-6011-6997",
"versionType": "custom"
},
{
"lessThanOrEqual": "V3.2.5",
"status": "affected",
"version": "PCV100-F200-B17-V1D-6011, PCV100-F200-B17-V1D-6011-8203",
"versionType": "custom"
}
]
},
{
"product": "PXV/PGV B28 Profisafe",
"vendor": "Pepper+Fuchs",
"versions": [
{
"lessThanOrEqual": "V1.0.3",
"status": "affected",
"version": "PXV100A-F200-B28-V1D, PXV100A-F200-B28-V1D-6011, PGV100A-F200-B28-V1D, PGV100A-F200A-B28-V1D",
"versionType": "custom"
},
{
"lessThanOrEqual": "V2.1.1",
"status": "affected",
"version": "PGV100AQ-F200A-B28-V1D, PGV100AQ-F200-B28-V1D, PXV100AQ-F200-B28-V1D, PXV100AQ-F200-B28-V1D-6011",
"versionType": "custom"
}
]
},
{
"product": "OHV",
"vendor": "Pepper+Fuchs",
"versions": [
{
"lessThanOrEqual": "V1.1.0",
"status": "affected",
"version": "OHV-F230-B17",
"versionType": "custom"
}
]
},
{
"product": "OIT",
"vendor": "Pepper+Fuchs",
"versions": [
{
"lessThanOrEqual": "V1.3.4",
"status": "affected",
"version": "OIT500-F113-B17-CB",
"versionType": "custom"
}
]
},
{
"product": "PHA",
"vendor": "Pepper+Fuchs",
"versions": [
{
"lessThanOrEqual": "V3.1.5",
"status": "affected",
"version": "PHA300-F200-B17-V1D, PHA400-F200-B17-V1D, PHA300-F200A-B17-V1D, PHA300-F200-B17-T-V1D, PHA200-F200A-B17-V1D, PHA200-F200-B17-V1D, PHA400-F200A-B17-V1D, PHA300-F200A-B17-T-V1D, PHA600-F200A-B17-V1D, PHA500-F200-B17-V1D, PHA500-F200A-B17-V1D, PHA600-F200-B17-V1D, PHA150-F200A-B17-V1D, PHA200-F200A-B17-T-V1D, PHA150-F200-B17-V1D, PHA800-F200-B17-V1D, PHA400-F200A-B17-T-V1D, PHA500-F200A-B17-T-V1D, PHA700-F200-B17-V1D",
"versionType": "custom"
}
]
},
{
"product": "WCS",
"vendor": "Pepper+Fuchs",
"versions": [
{
"lessThanOrEqual": "V3.0.0",
"status": "affected",
"version": "WCS3B-LS610, WCS3B-LS610H, WCS3B-LS610D, WCS3B-LS610DH, WCS3B-LS610H-OM, WCS3B-LS610DH-OM, WCS3B-LS610D-OM, CS3B-LS610-OM",
"versionType": "custom"
}
]
}
],
"datePublic": "2021-02-15T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "A Denial of Service vulnerability was found in Hilscher PROFINET IO Device V3 in versions prior to V3.14.0.7. This may lead to unexpected loss of cyclic communication or interruption of acyclic communication."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-787",
"description": "CWE-787 Out-of-bounds Write",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-02-16T16:35:48",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://cert.vde.com/en-us/advisories/vde-2021-006"
}
],
"source": {
"advisory": "vde-2021-006",
"defect": [
"vde-2021-006"
],
"discovery": "UNKNOWN"
},
"title": "Hilscher: Denial of Service vulnerability in PROFINET IO Device",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "info@cert.vde.com",
"DATE_PUBLIC": "2021-02-15T13:00:00.000Z",
"ID": "CVE-2021-20986",
"STATE": "PUBLIC",
"TITLE": "Hilscher: Denial of Service vulnerability in PROFINET IO Device"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "PROFINET IO Device",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "V3",
"version_value": "V3.14.0.7"
}
]
}
}
]
},
"vendor_name": "Hilscher"
},
{
"product": {
"product_data": [
{
"product_name": "PCV/PXV/PGV",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "PGV100-F200A-B17-V1D, PGV150I-F200A-B17-V1D, PGV100-F200-B17-V1D-7477",
"version_value": "V2.0.0"
},
{
"version_affected": "\u003c=",
"version_name": "PXV100-F200-B17-V1D, PXV100-F200-B17-V1D-3636",
"version_value": "V4.2.0"
},
{
"version_affected": "\u003c=",
"version_name": "PCV80-F200-B17-V1D, PCV100-F200-B17-V1D, PCV50-F200-B17-V1D, PCV100-F200-B17-V1D-6011-6997",
"version_value": "V3.2.3"
},
{
"version_affected": "\u003c=",
"version_name": "PCV100-F200-B17-V1D-6011, PCV100-F200-B17-V1D-6011-8203",
"version_value": "V3.2.5"
}
]
}
},
{
"product_name": "PXV/PGV B28 Profisafe",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "PXV100A-F200-B28-V1D, PXV100A-F200-B28-V1D-6011, PGV100A-F200-B28-V1D, PGV100A-F200A-B28-V1D",
"version_value": "V1.0.3"
},
{
"version_affected": "\u003c=",
"version_name": "PGV100AQ-F200A-B28-V1D, PGV100AQ-F200-B28-V1D, PXV100AQ-F200-B28-V1D, PXV100AQ-F200-B28-V1D-6011",
"version_value": "V2.1.1"
}
]
}
},
{
"product_name": "OHV",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "OHV-F230-B17",
"version_value": "V1.1.0"
}
]
}
},
{
"product_name": "OIT",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "OIT500-F113-B17-CB",
"version_value": "V1.3.4"
}
]
}
},
{
"product_name": "PHA",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "PHA300-F200-B17-V1D, PHA400-F200-B17-V1D, PHA300-F200A-B17-V1D, PHA300-F200-B17-T-V1D, PHA200-F200A-B17-V1D, PHA200-F200-B17-V1D, PHA400-F200A-B17-V1D, PHA300-F200A-B17-T-V1D, PHA600-F200A-B17-V1D, PHA500-F200-B17-V1D, PHA500-F200A-B17-V1D, PHA600-F200-B17-V1D, PHA150-F200A-B17-V1D, PHA200-F200A-B17-T-V1D, PHA150-F200-B17-V1D, PHA800-F200-B17-V1D, PHA400-F200A-B17-T-V1D, PHA500-F200A-B17-T-V1D, PHA700-F200-B17-V1D",
"version_value": "V3.1.5"
}
]
}
},
{
"product_name": "WCS",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "WCS3B-LS610, WCS3B-LS610H, WCS3B-LS610D, WCS3B-LS610DH, WCS3B-LS610H-OM, WCS3B-LS610DH-OM, WCS3B-LS610D-OM, CS3B-LS610-OM",
"version_value": "V3.0.0"
}
]
}
}
]
},
"vendor_name": "Pepper+Fuchs"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A Denial of Service vulnerability was found in Hilscher PROFINET IO Device V3 in versions prior to V3.14.0.7. This may lead to unexpected loss of cyclic communication or interruption of acyclic communication."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-787 Out-of-bounds Write"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device",
"refsource": "CONFIRM",
"url": "https://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device"
},
{
"name": "https://cert.vde.com/en-us/advisories/vde-2021-006",
"refsource": "CONFIRM",
"url": "https://cert.vde.com/en-us/advisories/vde-2021-006"
}
]
},
"source": {
"advisory": "vde-2021-006",
"defect": [
"vde-2021-006"
],
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2021-20986",
"datePublished": "2021-02-16T16:35:48.460903Z",
"dateReserved": "2020-12-17T00:00:00",
"dateUpdated": "2024-09-16T23:46:42.601Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}