cvelistv5 - CVE-2021-27391

CVE-2021-27391 (GCVE-0-2021-27391)

Vulnerability from cvelistv5 – Published: 2021-09-14 10:47 – Updated: 2025-04-23 19:28

Summary

A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions >= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions >= V2.6.3), APOGEE PXC Compact (BACnet) (All versions < V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions >= V2.8), APOGEE PXC Modular (BACnet) (All versions < V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions >= V2.8), TALON TC Compact (BACnet) (All versions < V3.5.3), TALON TC Modular (BACnet) (All versions < V3.5.3). The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow. An unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges.

Severity ?

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Assigner

siemens

References

URL

Tags

https://cert-portal.siemens.com/productcert/pdf/s…

x_refsource_MISC

Impacted products

Vendor

Product

Version

Siemens

APOGEE MBC (PPC) (P2 Ethernet)

Affected: All versions >= V2.6.3

Siemens	APOGEE MEC (PPC) (P2 Ethernet)	Affected: All versions >= V2.6.3
Siemens	APOGEE PXC Compact (BACnet)	Affected: All versions < V3.5.3
Siemens	APOGEE PXC Compact (P2 Ethernet)	Affected: All versions >= V2.8
Siemens	APOGEE PXC Modular (BACnet)	Affected: All versions < V3.5.3
Siemens	APOGEE PXC Modular (P2 Ethernet)	Affected: All versions >= V2.8
Siemens	TALON TC Compact (BACnet)	Affected: All versions < V3.5.3
Siemens	TALON TC Modular (BACnet)	Affected: All versions < V3.5.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T20:48:16.974Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 9.8,
              "baseSeverity": "CRITICAL",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2021-27391",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-04-23T13:27:50.374532Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-04-23T19:28:38.162Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "APOGEE MBC (PPC) (P2 Ethernet)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003e= V2.6.3"
            }
          ]
        },
        {
          "product": "APOGEE MEC (PPC) (P2 Ethernet)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003e= V2.6.3"
            }
          ]
        },
        {
          "product": "APOGEE PXC Compact (BACnet)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V3.5.3"
            }
          ]
        },
        {
          "product": "APOGEE PXC Compact (P2 Ethernet)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003e= V2.8"
            }
          ]
        },
        {
          "product": "APOGEE PXC Modular (BACnet)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V3.5.3"
            }
          ]
        },
        {
          "product": "APOGEE PXC Modular (P2 Ethernet)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003e= V2.8"
            }
          ]
        },
        {
          "product": "TALON TC Compact (BACnet)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V3.5.3"
            }
          ]
        },
        {
          "product": "TALON TC Modular (BACnet)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V3.5.3"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE PXC Compact (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions \u003e= V2.8), APOGEE PXC Modular (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions \u003e= V2.8), TALON TC Compact (BACnet) (All versions \u003c V3.5.3), TALON TC Modular (BACnet) (All versions \u003c V3.5.3). The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow. An unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-120",
              "description": "CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-09-14T10:47:31.000Z",
        "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
        "shortName": "siemens"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "productcert@siemens.com",
          "ID": "CVE-2021-27391",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "APOGEE MBC (PPC) (P2 Ethernet)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "All versions \u003e= V2.6.3"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "APOGEE MEC (PPC) (P2 Ethernet)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "All versions \u003e= V2.6.3"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "APOGEE PXC Compact (BACnet)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "All versions \u003c V3.5.3"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "APOGEE PXC Compact (P2 Ethernet)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "All versions \u003e= V2.8"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "APOGEE PXC Modular (BACnet)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "All versions \u003c V3.5.3"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "APOGEE PXC Modular (P2 Ethernet)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "All versions \u003e= V2.8"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "TALON TC Compact (BACnet)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "All versions \u003c V3.5.3"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "TALON TC Modular (BACnet)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "All versions \u003c V3.5.3"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Siemens"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE PXC Compact (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions \u003e= V2.8), APOGEE PXC Modular (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions \u003e= V2.8), TALON TC Compact (BACnet) (All versions \u003c V3.5.3), TALON TC Modular (BACnet) (All versions \u003c V3.5.3). The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow. An unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf",
              "refsource": "MISC",
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
    "assignerShortName": "siemens",
    "cveId": "CVE-2021-27391",
    "datePublished": "2021-09-14T10:47:31.000Z",
    "dateReserved": "2021-02-18T00:00:00.000Z",
    "dateUpdated": "2025-04-23T19:28:38.162Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:apogee_mbc_\\\\(ppc\\\\)_\\\\(p2_ethernet\\\\)_firmware:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"2.6.3\", \"matchCriteriaId\": \"31740BC7-0AA1-407C-A09A-80F5F988B622\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:apogee_mbc_\\\\(ppc\\\\)_\\\\(p2_ethernet\\\\):*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7DCA333D-E244-474C-85A1-28D58BD52B9A\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:apogee_mec_\\\\(ppc\\\\)_\\\\(p2_ethernet\\\\)_firmware:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"2.6.3\", \"matchCriteriaId\": \"10AE7480-2439-4C4F-A2A9-534ADB3465FC\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:apogee_mec_\\\\(ppc\\\\)_\\\\(p2_ethernet\\\\):*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4C6D6BE1-3FBA-4CFB-BCB2-69CD32C2B66C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:apogee_pxc_bacnet_automation_controller_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"3.5.3\", \"matchCriteriaId\": \"6ED57DFE-CB12-4448-97C8-FA7E91F14270\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:apogee_pxc_bacnet_automation_controller:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B0CFFD37-F58F-48D3-A466-06CAAC8BD580\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:apogee_pxc_compact_\\\\(p2_ethernet\\\\)_firmware:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"2.8\", \"matchCriteriaId\": \"8AB7990B-3DEF-4FB9-A577-63D5BFFA6FB0\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:apogee_pxc_compact_\\\\(p2_ethernet\\\\):*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"86B37170-74CC-44A2-A069-C91E1B8A3877\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:apogee_pxc_modular_\\\\(bacnet\\\\)_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"3.5.3\", \"matchCriteriaId\": \"68DB98DC-274A-403B-846A-0B3F54A1AC4A\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:apogee_pxc_modular_\\\\(bacnet\\\\):*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"63A8FFF6-EB8F-4159-B8E7-6619780EE5F0\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:apogee_pxc_modular_\\\\(p2_ethernet\\\\)_firmware:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"2.8\", \"matchCriteriaId\": \"EC73A707-FD2E-4ACA-8F53-CE82033952B7\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:apogee_pxc_modular_\\\\(p2_ethernet\\\\):*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"78EE7A2C-2967-40E5-8485-D90E087F7885\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:talon_tc_compact_\\\\(bacnet\\\\)_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"3.5.3\", \"matchCriteriaId\": \"6C746D61-2372-41AF-B074-1BE5B82418DA\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:talon_tc_compact_\\\\(bacnet\\\\):*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"173D1A0C-FCC9-454B-B701-57B1EB83473D\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:talon_tc_modular_\\\\(bacnet\\\\)_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"3.5.3\", \"matchCriteriaId\": \"E4755D15-F0E4-49D1-8176-4C7D7F5D5421\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:talon_tc_modular_\\\\(bacnet\\\\):*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8862F30B-F2C6-4B03-965D-36AC1F3B9490\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE PXC Compact (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions \u003e= V2.8), APOGEE PXC Modular (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions \u003e= V2.8), TALON TC Compact (BACnet) (All versions \u003c V3.5.3), TALON TC Modular (BACnet) (All versions \u003c V3.5.3). The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow. An unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges.\"}, {\"lang\": \"es\", \"value\": \"Se ha identificado una vulnerabilidad en APOGEE MBC (PPC) (P2 Ethernet) (Todas las versiones posteriores a V2.6.3, incluy\\u00e9ndola), APOGEE MEC (PPC) (P2 Ethernet) (Todas las versiones posteriores a V2.6.3, incluy\\u00e9ndola), APOGEE PXC Compact (BACnet) (Todas las versiones anteriores a V3.5.3), APOGEE PXC Compact (P2 Ethernet) (Todas las versiones posteriores a V2.8, incluy\\u00e9ndola), APOGEE PXC Modular (BACnet) (Todas las versiones anteriores a V3.5.3), APOGEE PXC Modular (P2 Ethernet) (Todas las versiones posteriores a V2.8, incluy\\u00e9ndola), TALON TC Compact (BACnet) (Todas las versiones anteriores a V3.5.3), TALON TC Modular (BACnet) (Todas las versiones anteriores a V3.5.3). El servidor web de los dispositivos afectados carece de una comprobaci\\u00f3n de l\\u00edmites apropiada cuando analiza el par\\u00e1metro Host en las peticiones HTTP, que podr\\u00eda conllevar un desbordamiento del b\\u00fafer. Un atacante remoto no autenticado podr\\u00eda explotar esta vulnerabilidad para ejecutar c\\u00f3digo arbitrario en el dispositivo con privilegios de root\"}]",
      "id": "CVE-2021-27391",
      "lastModified": "2024-11-21T05:57:54.120",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 9.8, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:C/I:C/A:C\", \"baseScore\": 10.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2021-09-14T11:15:23.913",
      "references": "[{\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf\", \"source\": \"productcert@siemens.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}]",
      "sourceIdentifier": "productcert@siemens.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"productcert@siemens.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-120\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2021-27391\",\"sourceIdentifier\":\"productcert@siemens.com\",\"published\":\"2021-09-14T11:15:23.913\",\"lastModified\":\"2025-04-23T20:15:22.940\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE PXC Compact (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions \u003e= V2.8), APOGEE PXC Modular (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions \u003e= V2.8), TALON TC Compact (BACnet) (All versions \u003c V3.5.3), TALON TC Modular (BACnet) (All versions \u003c V3.5.3). The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow. An unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges.\"},{\"lang\":\"es\",\"value\":\"Se ha identificado una vulnerabilidad en APOGEE MBC (PPC) (P2 Ethernet) (Todas las versiones posteriores a V2.6.3, incluy\u00e9ndola), APOGEE MEC (PPC) (P2 Ethernet) (Todas las versiones posteriores a V2.6.3, incluy\u00e9ndola), APOGEE PXC Compact (BACnet) (Todas las versiones anteriores a V3.5.3), APOGEE PXC Compact (P2 Ethernet) (Todas las versiones posteriores a V2.8, incluy\u00e9ndola), APOGEE PXC Modular (BACnet) (Todas las versiones anteriores a V3.5.3), APOGEE PXC Modular (P2 Ethernet) (Todas las versiones posteriores a V2.8, incluy\u00e9ndola), TALON TC Compact (BACnet) (Todas las versiones anteriores a V3.5.3), TALON TC Modular (BACnet) (Todas las versiones anteriores a V3.5.3). El servidor web de los dispositivos afectados carece de una comprobaci\u00f3n de l\u00edmites apropiada cuando analiza el par\u00e1metro Host en las peticiones HTTP, que podr\u00eda conllevar un desbordamiento del b\u00fafer. Un atacante remoto no autenticado podr\u00eda explotar esta vulnerabilidad para ejecutar c\u00f3digo arbitrario en el dispositivo con privilegios de root\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":10.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"productcert@siemens.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-120\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:apogee_mbc_\\\\(ppc\\\\)_\\\\(p2_ethernet\\\\)_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.6.3\",\"matchCriteriaId\":\"31740BC7-0AA1-407C-A09A-80F5F988B622\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:apogee_mbc_\\\\(ppc\\\\)_\\\\(p2_ethernet\\\\):*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7DCA333D-E244-474C-85A1-28D58BD52B9A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:apogee_mec_\\\\(ppc\\\\)_\\\\(p2_ethernet\\\\)_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.6.3\",\"matchCriteriaId\":\"10AE7480-2439-4C4F-A2A9-534ADB3465FC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:apogee_mec_\\\\(ppc\\\\)_\\\\(p2_ethernet\\\\):*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C6D6BE1-3FBA-4CFB-BCB2-69CD32C2B66C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:apogee_pxc_bacnet_automation_controller_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.5.3\",\"matchCriteriaId\":\"6ED57DFE-CB12-4448-97C8-FA7E91F14270\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:apogee_pxc_bacnet_automation_controller:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0CFFD37-F58F-48D3-A466-06CAAC8BD580\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:apogee_pxc_compact_\\\\(p2_ethernet\\\\)_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.8\",\"matchCriteriaId\":\"8AB7990B-3DEF-4FB9-A577-63D5BFFA6FB0\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:apogee_pxc_compact_\\\\(p2_ethernet\\\\):*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86B37170-74CC-44A2-A069-C91E1B8A3877\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:apogee_pxc_modular_\\\\(bacnet\\\\)_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.5.3\",\"matchCriteriaId\":\"68DB98DC-274A-403B-846A-0B3F54A1AC4A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:apogee_pxc_modular_\\\\(bacnet\\\\):*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63A8FFF6-EB8F-4159-B8E7-6619780EE5F0\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:apogee_pxc_modular_\\\\(p2_ethernet\\\\)_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.8\",\"matchCriteriaId\":\"EC73A707-FD2E-4ACA-8F53-CE82033952B7\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:apogee_pxc_modular_\\\\(p2_ethernet\\\\):*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"78EE7A2C-2967-40E5-8485-D90E087F7885\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:talon_tc_compact_\\\\(bacnet\\\\)_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.5.3\",\"matchCriteriaId\":\"6C746D61-2372-41AF-B074-1BE5B82418DA\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:talon_tc_compact_\\\\(bacnet\\\\):*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"173D1A0C-FCC9-454B-B701-57B1EB83473D\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:talon_tc_modular_\\\\(bacnet\\\\)_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.5.3\",\"matchCriteriaId\":\"E4755D15-F0E4-49D1-8176-4C7D7F5D5421\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:talon_tc_modular_\\\\(bacnet\\\\):*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8862F30B-F2C6-4B03-965D-36AC1F3B9490\"}]}]}],\"references\":[{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf\",\"source\":\"productcert@siemens.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T20:48:16.974Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 9.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"CRITICAL\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2021-27391\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-04-23T13:27:50.374532Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-04-23T14:35:38.661Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"Siemens\", \"product\": \"APOGEE MBC (PPC) (P2 Ethernet)\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003e= V2.6.3\"}]}, {\"vendor\": \"Siemens\", \"product\": \"APOGEE MEC (PPC) (P2 Ethernet)\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003e= V2.6.3\"}]}, {\"vendor\": \"Siemens\", \"product\": \"APOGEE PXC Compact (BACnet)\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V3.5.3\"}]}, {\"vendor\": \"Siemens\", \"product\": \"APOGEE PXC Compact (P2 Ethernet)\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003e= V2.8\"}]}, {\"vendor\": \"Siemens\", \"product\": \"APOGEE PXC Modular (BACnet)\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V3.5.3\"}]}, {\"vendor\": \"Siemens\", \"product\": \"APOGEE PXC Modular (P2 Ethernet)\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003e= V2.8\"}]}, {\"vendor\": \"Siemens\", \"product\": \"TALON TC Compact (BACnet)\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V3.5.3\"}]}, {\"vendor\": \"Siemens\", \"product\": \"TALON TC Modular (BACnet)\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V3.5.3\"}]}], \"references\": [{\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE PXC Compact (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions \u003e= V2.8), APOGEE PXC Modular (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions \u003e= V2.8), TALON TC Compact (BACnet) (All versions \u003c V3.5.3), TALON TC Modular (BACnet) (All versions \u003c V3.5.3). The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow. An unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-120\", \"description\": \"CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"cec7a2ec-15b4-4faf-bd53-b40f371f3a77\", \"shortName\": \"siemens\", \"dateUpdated\": \"2021-09-14T10:47:31.000Z\"}, \"x_legacyV4Record\": {\"affects\": {\"vendor\": {\"vendor_data\": [{\"product\": {\"product_data\": [{\"version\": {\"version_data\": [{\"version_value\": \"All versions \u003e= V2.6.3\"}]}, \"product_name\": \"APOGEE MBC (PPC) (P2 Ethernet)\"}, {\"version\": {\"version_data\": [{\"version_value\": \"All versions \u003e= V2.6.3\"}]}, \"product_name\": \"APOGEE MEC (PPC) (P2 Ethernet)\"}, {\"version\": {\"version_data\": [{\"version_value\": \"All versions \u003c V3.5.3\"}]}, \"product_name\": \"APOGEE PXC Compact (BACnet)\"}, {\"version\": {\"version_data\": [{\"version_value\": \"All versions \u003e= V2.8\"}]}, \"product_name\": \"APOGEE PXC Compact (P2 Ethernet)\"}, {\"version\": {\"version_data\": [{\"version_value\": \"All versions \u003c V3.5.3\"}]}, \"product_name\": \"APOGEE PXC Modular (BACnet)\"}, {\"version\": {\"version_data\": [{\"version_value\": \"All versions \u003e= V2.8\"}]}, \"product_name\": \"APOGEE PXC Modular (P2 Ethernet)\"}, {\"version\": {\"version_data\": [{\"version_value\": \"All versions \u003c V3.5.3\"}]}, \"product_name\": \"TALON TC Compact (BACnet)\"}, {\"version\": {\"version_data\": [{\"version_value\": \"All versions \u003c V3.5.3\"}]}, \"product_name\": \"TALON TC Modular (BACnet)\"}]}, \"vendor_name\": \"Siemens\"}]}}, \"data_type\": \"CVE\", \"references\": {\"reference_data\": [{\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf\", \"name\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf\", \"refsource\": \"MISC\"}]}, \"data_format\": \"MITRE\", \"description\": {\"description_data\": [{\"lang\": \"eng\", \"value\": \"A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE PXC Compact (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions \u003e= V2.8), APOGEE PXC Modular (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions \u003e= V2.8), TALON TC Compact (BACnet) (All versions \u003c V3.5.3), TALON TC Modular (BACnet) (All versions \u003c V3.5.3). The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow. An unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges.\"}]}, \"problemtype\": {\"problemtype_data\": [{\"description\": [{\"lang\": \"eng\", \"value\": \"CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)\"}]}]}, \"data_version\": \"4.0\", \"CVE_data_meta\": {\"ID\": \"CVE-2021-27391\", \"STATE\": \"PUBLIC\", \"ASSIGNER\": \"productcert@siemens.com\"}}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2021-27391\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-04-23T19:28:38.162Z\", \"dateReserved\": \"2021-02-18T00:00:00.000Z\", \"assignerOrgId\": \"cec7a2ec-15b4-4faf-bd53-b40f371f3a77\", \"datePublished\": \"2021-09-14T10:47:31.000Z\", \"assignerShortName\": \"siemens\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

VAR-202109-0404

Vulnerability from variot - Updated: 2023-12-18 11:12

Many Siemens APOGEE MBC products have buffer overflow vulnerabilities. Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-202109-0404",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "apogee pxc modular",
        "scope": null,
        "trust": 1.6,
        "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
        "version": null
      },
      {
        "model": "apogee pxc compact \\",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "siemens",
        "version": "2.8"
      },
      {
        "model": "talon tc modular \\",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "siemens",
        "version": "3.5.3"
      },
      {
        "model": "apogee pxc bacnet automation controller",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "siemens",
        "version": "3.5.3"
      },
      {
        "model": "apogee pxc modular \\",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "siemens",
        "version": "2.8"
      },
      {
        "model": "apogee mbc \\ \\",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "siemens",
        "version": "2.6.3"
      },
      {
        "model": "apogee pxc modular \\",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "siemens",
        "version": "3.5.3"
      },
      {
        "model": "talon tc compact \\",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "siemens",
        "version": "3.5.3"
      },
      {
        "model": "apogee mec \\ \\",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "siemens",
        "version": "2.6.3"
      },
      {
        "model": "apogee mbc",
        "scope": null,
        "trust": 0.8,
        "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
        "version": null
      },
      {
        "model": "talon tc modular",
        "scope": null,
        "trust": 0.8,
        "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
        "version": null
      },
      {
        "model": "talon tc compact",
        "scope": null,
        "trust": 0.8,
        "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
        "version": null
      },
      {
        "model": "apogee pxc bacnet automation \u30b3\u30f3\u30c8\u30ed\u30fc\u30e9",
        "scope": null,
        "trust": 0.8,
        "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
        "version": null
      },
      {
        "model": "apogee pxc compact",
        "scope": null,
        "trust": 0.8,
        "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
        "version": null
      },
      {
        "model": "apogee mec",
        "scope": null,
        "trust": 0.8,
        "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
        "version": null
      },
      {
        "model": "apogee mbc",
        "scope": "gte",
        "trust": 0.6,
        "vendor": "siemens",
        "version": "v2.6.3"
      },
      {
        "model": "apogee mec",
        "scope": "gte",
        "trust": 0.6,
        "vendor": "siemens",
        "version": "v2.6.3"
      },
      {
        "model": "apogee pxc compact",
        "scope": "lt",
        "trust": 0.6,
        "vendor": "siemens",
        "version": "v3.5.3"
      },
      {
        "model": "apogee pxc compact",
        "scope": "gte",
        "trust": 0.6,
        "vendor": "siemens",
        "version": "v2.8"
      },
      {
        "model": "apogee pxc modular",
        "scope": "lt",
        "trust": 0.6,
        "vendor": "siemens",
        "version": "v3.5.3"
      },
      {
        "model": "apogee pxc modular",
        "scope": "gte",
        "trust": 0.6,
        "vendor": "siemens",
        "version": "v2.8"
      },
      {
        "model": "talon tc compact",
        "scope": "lt",
        "trust": 0.6,
        "vendor": "siemens",
        "version": "v3.5.3"
      },
      {
        "model": "talon tc modular",
        "scope": "lt",
        "trust": 0.6,
        "vendor": "siemens",
        "version": "v3.5.3"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2021-71447"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-012332"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-27391"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:apogee_mbc_\\(ppc\\)_\\(p2_ethernet\\)_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "2.6.3",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:apogee_mbc_\\(ppc\\)_\\(p2_ethernet\\):*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:apogee_mec_\\(ppc\\)_\\(p2_ethernet\\)_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "2.6.3",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:apogee_mec_\\(ppc\\)_\\(p2_ethernet\\):*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:apogee_pxc_bacnet_automation_controller_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "3.5.3",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:apogee_pxc_bacnet_automation_controller:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:apogee_pxc_compact_\\(p2_ethernet\\)_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "2.8",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:apogee_pxc_compact_\\(p2_ethernet\\):*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:apogee_pxc_modular_\\(bacnet\\)_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "3.5.3",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:apogee_pxc_modular_\\(bacnet\\):*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:apogee_pxc_modular_\\(p2_ethernet\\)_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "2.8",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:apogee_pxc_modular_\\(p2_ethernet\\):*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:talon_tc_compact_\\(bacnet\\)_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "3.5.3",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:talon_tc_compact_\\(bacnet\\):*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:talon_tc_modular_\\(bacnet\\)_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "3.5.3",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:talon_tc_modular_\\(bacnet\\):*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2021-27391"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Paul Noalhyt and David Doggett from Red Balloon Security reported this vulnerability to Siemens.",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-940"
      }
    ],
    "trust": 0.6
  },
  "cve": "CVE-2021-27391",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "HIGH",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Complete",
            "baseScore": 10.0,
            "confidentialityImpact": "Complete",
            "exploitabilityScore": null,
            "id": "CVE-2021-27391",
            "impactScore": null,
            "integrityImpact": "Complete",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "High",
            "trust": 0.9,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "CNVD-2021-71447",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.6,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "author": "NVD",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 3.9,
            "impactScore": 5.9,
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          {
            "attackComplexity": "Low",
            "attackVector": "Network",
            "author": "NVD",
            "availabilityImpact": "High",
            "baseScore": 9.8,
            "baseSeverity": "Critical",
            "confidentialityImpact": "High",
            "exploitabilityScore": null,
            "id": "CVE-2021-27391",
            "impactScore": null,
            "integrityImpact": "High",
            "privilegesRequired": "None",
            "scope": "Unchanged",
            "trust": 0.8,
            "userInteraction": "None",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2021-27391",
            "trust": 1.8,
            "value": "CRITICAL"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2021-71447",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-202104-975",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-202109-940",
            "trust": 0.6,
            "value": "CRITICAL"
          },
          {
            "author": "VULMON",
            "id": "CVE-2021-27391",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2021-71447"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-27391"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-012332"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-27391"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202104-975"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-940"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE PXC Compact (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions \u003e= V2.8), APOGEE PXC Modular (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions \u003e= V2.8), TALON TC Compact (BACnet) (All versions \u003c V3.5.3), TALON TC Modular (BACnet) (All versions \u003c V3.5.3). The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow. An unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges. Multiple Siemens products contain a classic buffer overflow vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Siemens APOGEE MBC is a modular building controller of Siemens (Siemens), Germany. \n\r\n\r\nMany Siemens APOGEE MBC products have buffer overflow vulnerabilities. Pillow is a Python-based image processing library. \nThere is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2021-27391"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-012332"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2021-71447"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202104-975"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-27391"
      }
    ],
    "trust": 2.79
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2021-27391",
        "trust": 3.9
      },
      {
        "db": "SIEMENS",
        "id": "SSA-944498",
        "trust": 2.3
      },
      {
        "db": "ICS CERT",
        "id": "ICSA-21-257-07",
        "trust": 1.4
      },
      {
        "db": "JVN",
        "id": "JVNVU96712416",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-012332",
        "trust": 0.8
      },
      {
        "db": "CNVD",
        "id": "CNVD-2021-71447",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2021041363",
        "trust": 0.6
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202104-975",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.3107",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2021091515",
        "trust": 0.6
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-940",
        "trust": 0.6
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-27391",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2021-71447"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-27391"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-012332"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-27391"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202104-975"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-940"
      }
    ]
  },
  "id": "VAR-202109-0404",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2021-71447"
      }
    ],
    "trust": 1.2646825571428573
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2021-71447"
      }
    ]
  },
  "last_update_date": "2023-12-18T11:12:01.127000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "SSA-944498",
        "trust": 0.8,
        "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf"
      },
      {
        "title": "Patch for Buffer overflow vulnerabilities in many Siemens APOGEE MBC products",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchinfo/show/291051"
      },
      {
        "title": "Siemens APOGEE MBC Buffer error vulnerability fix",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=162915"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2021-71447"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-012332"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-940"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-120",
        "trust": 1.0
      },
      {
        "problemtype": "Classic buffer overflow (CWE-120) [ others ]",
        "trust": 0.8
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-012332"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-27391"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.3,
        "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf"
      },
      {
        "trust": 1.4,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2021-27391"
      },
      {
        "trust": 0.8,
        "url": "https://jvn.jp/vu/jvnvu96712416/"
      },
      {
        "trust": 0.8,
        "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-257-07"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2021041363"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2021091515"
      },
      {
        "trust": 0.6,
        "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-257-07"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.3107"
      },
      {
        "trust": 0.1,
        "url": "https://cwe.mitre.org/data/definitions/120.html"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2021-71447"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-27391"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-012332"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-27391"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202104-975"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-940"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CNVD",
        "id": "CNVD-2021-71447"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-27391"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-012332"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-27391"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202104-975"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-940"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2021-09-16T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2021-71447"
      },
      {
        "date": "2021-09-14T00:00:00",
        "db": "VULMON",
        "id": "CVE-2021-27391"
      },
      {
        "date": "2022-08-30T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2021-012332"
      },
      {
        "date": "2021-09-14T11:15:23.913000",
        "db": "NVD",
        "id": "CVE-2021-27391"
      },
      {
        "date": "2021-04-13T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202104-975"
      },
      {
        "date": "2021-09-14T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202109-940"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2021-09-16T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2021-71447"
      },
      {
        "date": "2021-09-28T00:00:00",
        "db": "VULMON",
        "id": "CVE-2021-27391"
      },
      {
        "date": "2022-08-30T02:02:00",
        "db": "JVNDB",
        "id": "JVNDB-2021-012332"
      },
      {
        "date": "2021-09-28T16:24:02.287000",
        "db": "NVD",
        "id": "CVE-2021-27391"
      },
      {
        "date": "2021-04-14T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202104-975"
      },
      {
        "date": "2022-07-01T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202109-940"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-940"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Classic buffer overflow vulnerability in multiple Siemens products",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-012332"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "other",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-202104-975"
      }
    ],
    "trust": 0.6
  }
}

SSA-944498

Vulnerability from csaf_siemens - Published: 2021-09-14 00:00 - Updated: 2021-09-14 00:00

Summary

SSA-944498: Buffer Overflow Vulnerability in Web Server of APOGEE and TALON Automation Devices

Notes

Summary

A buffer overflow vulnerability in the integrated web server of multiple APOGEE and TALON automation devices could allow a remote attacker to execute arbitrary code on the devices with root privileges. Affected devices include the APOGEE MBC/MEC/PXC P2 Ethernet devices with Power Open Processors (PPC), APOGEE PXC BACnet devices, and TALON TC BACnet devices. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends countermeasures for products where updates are not, or not yet available.

General Recommendations

As a general security measure Siemens strongly recommends to protect network access to affected products with appropriate mechanisms. It is advised to follow recommended security practices in order to run the devices in a protected IT environment.

Additional Resources

For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories

Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter "License Terms"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter "Terms of Use"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "names": [
          "Paul Noalhyt",
          "David Doggett"
        ],
        "organization": "Red Balloon Security",
        "summary": "coordinated disclosure"
      }
    ],
    "category": "Siemens Security Advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Disclosure is not limited.",
      "tlp": {
        "label": "WHITE"
      }
    },
    "notes": [
      {
        "category": "summary",
        "text": "A buffer overflow vulnerability in the integrated web server of multiple APOGEE and TALON automation devices could allow a remote attacker to execute arbitrary code on the devices with root privileges.\n\nAffected devices include the APOGEE MBC/MEC/PXC P2 Ethernet devices with Power Open Processors (PPC), APOGEE PXC BACnet devices, and TALON TC BACnet devices.\n\nSiemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends countermeasures for products where updates are not, or not yet available.",
        "title": "Summary"
      },
      {
        "category": "general",
        "text": "As a general security measure Siemens strongly recommends to protect network access to affected products with appropriate mechanisms. It is advised to follow recommended security practices in order to run the devices in a protected IT environment.",
        "title": "General Recommendations"
      },
      {
        "category": "general",
        "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "productcert@siemens.com",
      "name": "Siemens ProductCERT",
      "namespace": "https://www.siemens.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "SSA-944498: Buffer Overflow Vulnerability in Web Server of APOGEE and TALON Automation Devices - PDF Version",
        "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf"
      },
      {
        "category": "self",
        "summary": "SSA-944498: Buffer Overflow Vulnerability in Web Server of APOGEE and TALON Automation Devices - TXT Version",
        "url": "https://cert-portal.siemens.com/productcert/txt/ssa-944498.txt"
      },
      {
        "category": "self",
        "summary": "SSA-944498: Buffer Overflow Vulnerability in Web Server of APOGEE and TALON Automation Devices - CSAF Version",
        "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-944498.json"
      }
    ],
    "title": "SSA-944498: Buffer Overflow Vulnerability in Web Server of APOGEE and TALON Automation Devices",
    "tracking": {
      "current_release_date": "2021-09-14T00:00:00Z",
      "generator": {
        "engine": {
          "name": "Siemens ProductCERT CSAF Generator",
          "version": "1"
        }
      },
      "id": "SSA-944498",
      "initial_release_date": "2021-09-14T00:00:00Z",
      "revision_history": [
        {
          "date": "2021-09-14T00:00:00Z",
          "legacy_version": "1.0",
          "number": "1",
          "summary": "Publication Date"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003e= V2.6.3",
                "product": {
                  "name": "APOGEE MBC (PPC) (P2 Ethernet)",
                  "product_id": "1"
                }
              }
            ],
            "category": "product_name",
            "name": "APOGEE MBC (PPC) (P2 Ethernet)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003e= V2.6.3",
                "product": {
                  "name": "APOGEE MEC (PPC) (P2 Ethernet)",
                  "product_id": "2"
                }
              }
            ],
            "category": "product_name",
            "name": "APOGEE MEC (PPC) (P2 Ethernet)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c V3.5.3",
                "product": {
                  "name": "APOGEE PXC Compact (BACnet)",
                  "product_id": "3"
                }
              }
            ],
            "category": "product_name",
            "name": "APOGEE PXC Compact (BACnet)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003e= V2.8",
                "product": {
                  "name": "APOGEE PXC Compact (P2 Ethernet)",
                  "product_id": "4"
                }
              }
            ],
            "category": "product_name",
            "name": "APOGEE PXC Compact (P2 Ethernet)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c V3.5.3",
                "product": {
                  "name": "APOGEE PXC Modular (BACnet)",
                  "product_id": "5"
                }
              }
            ],
            "category": "product_name",
            "name": "APOGEE PXC Modular (BACnet)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003e= V2.8",
                "product": {
                  "name": "APOGEE PXC Modular (P2 Ethernet)",
                  "product_id": "6"
                }
              }
            ],
            "category": "product_name",
            "name": "APOGEE PXC Modular (P2 Ethernet)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c V3.5.3",
                "product": {
                  "name": "TALON TC Compact (BACnet)",
                  "product_id": "7"
                }
              }
            ],
            "category": "product_name",
            "name": "TALON TC Compact (BACnet)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c V3.5.3",
                "product": {
                  "name": "TALON TC Modular (BACnet)",
                  "product_id": "8"
                }
              }
            ],
            "category": "product_name",
            "name": "TALON TC Modular (BACnet)"
          }
        ],
        "category": "vendor",
        "name": "Siemens"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-27391",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "notes": [
        {
          "category": "summary",
          "text": "The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow.\n\nAn unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "1",
          "2",
          "3",
          "4",
          "5",
          "6",
          "7",
          "8"
        ]
      },
      "references": [
        {
          "summary": "CVE-2021-27391 Mitre 5.0 json",
          "url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-27391.json"
        }
      ],
      "remediations": [
        {
          "category": "none_available",
          "details": "Currently no remediation is available",
          "product_ids": [
            "1",
            "2",
            "4",
            "6"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to V3.5.3 or later version",
          "product_ids": [
            "3",
            "5",
            "7",
            "8"
          ]
        },
        {
          "category": "mitigation",
          "details": "Please contact your local Siemens office for support",
          "product_ids": [
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8"
          ]
        },
        {
          "category": "mitigation",
          "details": "Restrict access to the device, especially to the web interface (80/tcp and 443/tcp), to trusted IP addresses only",
          "product_ids": [
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8"
          ]
        },
        {
          "category": "mitigation",
          "details": "Disable the integrated web server",
          "product_ids": [
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:T/RC:C",
            "version": "3.1"
          },
          "products": [
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8"
          ]
        }
      ],
      "title": "CVE-2021-27391"
    }
  ]
}

CERTFR-2021-AVI-706

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans les produits Siemens. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Siemens	N/A	SINEMA Server versions antérieures à V14 SP3
Siemens	N/A	SIMATIC CP 1543-1 (incl. SIPLUS variants) versions antérieures à V3.0
Siemens	N/A	SCALANCE X212-2LD versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X202-2 IRT toutes versions
Siemens	N/A	Desigo CC V4.0 toutes versions
Siemens	N/A	TALON TC Modular (BACnet) versions antérieures à V3.5.3
Siemens	N/A	SCALANCE X204-2FM versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X320-1 FE toutes versions
Siemens	N/A	LOGO! CMR2040 versions antérieures à V2.2
Siemens	N/A	SIMATIC RF350M toutes versions
Siemens	N/A	SCALANCE X308-2 (incl. SIPLUS NET variant) toutes versions
Siemens	N/A	Desigo CC Compact V5.0 versions antérieures à V5.0 QU1
Siemens	N/A	SCALANCE XF204 versions antérieures à V5.2.5
Siemens	N/A	SCALANCE XF204-2BA IRT toutes versions
Siemens	N/A	SINEMA Remote Connect Server versions antérieures à V3.0 SP2
Siemens	N/A	Teamcenter Active Workspace V5.1 versions antérieures à V5.1.5
Siemens	N/A	SCALANCE X307-3LD toutes versions
Siemens	N/A	RUGGEDCOM ROX RX1511 versions antérieures à V2.14.1
Siemens	N/A	SCALANCE X204-2 (incl. SIPLUS NET variant) versions antérieures à V5.2.5
Siemens	N/A	SCALANCE XR324-4M EEC toutes versions
Siemens	N/A	SCALANCE X224 versions antérieures à V5.2.5
Siemens	N/A	Desigo CC V5.0 versions antérieures à V5.0 QU1
Siemens	N/A	Teamcenter V13.0 versions antérieures à V13.0.0.7
Siemens	N/A	SCALANCE X204 IRT PRO toutes versions
Siemens	N/A	TALON TC Compact (BACnet) versions antérieures à V3.5.3
Siemens	N/A	Simcenter STAR-CCM+ Viewer versions antérieures à V2021.2.1
Siemens	N/A	Teamcenter Active Workspace V4.3 versions antérieures à V4.3.10
Siemens	N/A	Cerberus DMS V4.0 toutes versions
Siemens	N/A	APOGEE MEC (PPC) (P2 Ethernet) toutes versions >= V2.6.3
Siemens	N/A	SIMATIC CP 443-1 (incl. SIPLUS variants) toutes versions
Siemens	N/A	SCALANCE X310FE toutes versions
Siemens	N/A	SCALANCE X206-1 versions antérieures à V5.2.5
Siemens	N/A	RUGGEDCOM ROX MX5000 versions antérieures à V2.14.1
Siemens	N/A	Desigo CC Compact V4.2 toutes versions
Siemens	N/A	Desigo CC Compact V4.1 toutes versions
Siemens	N/A	RUGGEDCOM ROX RX1500 versions antérieures à V2.14.1
Siemens	N/A	SCALANCE X208 (incl. SIPLUS NET variant) versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X306-1LD FE toutes versions
Siemens	N/A	SIMATIC CP 443-1 Advanced (incl. SIPLUS variants) toutes versions
Siemens	N/A	Siveillance Control Pro toutes versions
Siemens	N/A	RUGGEDCOM ROX RX1501 versions antérieures à V2.14.1
Siemens	N/A	SCALANCE X202-2P IRT (incl. SIPLUS NET variant) toutes versions
Siemens	N/A	SINEC NMS versions antérieures à V1.0 SP1
Siemens	N/A	SIPROTEC 5 relays with CPU variants CP200 toutes versions
Siemens	N/A	SCALANCE X307-2 EEC toutes versions
Siemens	N/A	Cerberus DMS V4.1 toutes versions
Siemens	N/A	SIMATIC RTU 3000 family toutes versions
Siemens	N/A	SCALANCE X202-2P IRT PRO toutes versions
Siemens	N/A	LOGO! CMR2020 versions antérieures à V2.2
Siemens	N/A	Operation Scheduler toutes versions with OIS running on Debian 9 or earlier
Siemens	N/A	SCALANCE X208PRO versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X408-2 toutes versions
Siemens	N/A	SIPROTEC 5 relays with CPU variants CP300 versions antérieures à V8.80
Siemens	N/A	RUGGEDCOM ROX RX1400 versions antérieures à V2.14.1
Siemens	N/A	APOGEE PXC Modular (P2 Ethernet) toutes versions >= V2.8
Siemens	N/A	SIMATIC RF650M toutes versions
Siemens	N/A	SIMATIC CP 1545-1 toutes versions
Siemens	N/A	NX 1980 Series versions antérieures à V1984
Siemens	N/A	SCALANCE X302-7 EEC toutes versions
Siemens	N/A	Desigo CC toutes versions with OIS Extension Module
Siemens	N/A	SCALANCE X308-2M PoE toutes versions
Siemens	N/A	SIMATIC CP 343-1 Lean (incl. SIPLUS variants) toutes versions
Siemens	N/A	RUGGEDCOM ROX RX5000 versions antérieures à V2.14.1
Siemens	N/A	SCALANCE XR324-12M TS toutes versions
Siemens	N/A	SIMATIC CP 343-1 ERPC toutes versions
Siemens	N/A	RUGGEDCOM ROX RX1524 versions antérieures à V2.14.1
Siemens	N/A	RUGGEDCOM ROX RX1510 versions antérieures à V2.14.1
Siemens	N/A	SIPROTEC 5 relays with CPU variants CP100 versions antérieures à V8.80
Siemens	N/A	SCALANCE X200-4P IRT toutes versions
Siemens	N/A	SIMATIC CP 343-1 (incl. SIPLUS variants) toutes versions
Siemens	N/A	SCALANCE XF201-3P IRT toutes versions
Siemens	N/A	SCALANCE X201-3P IRT PRO toutes versions
Siemens	N/A	Simcenter Femap V2021.1 toutes versions
Siemens	N/A	APOGEE PXC Compact (BACnet) versions antérieures à V3.5.3
Siemens	N/A	SCALANCE X310 toutes versions
Siemens	N/A	SIPROTEC 5 relays with CPU variants CP050 versions antérieures à V8.80
Siemens	N/A	SCALANCE X308-2M toutes versions
Siemens	N/A	SCALANCE XF208 versions antérieures à V5.2.5
Siemens	N/A	Teamcenter V12.4 versions antérieures à V12.4.0.8
Siemens	N/A	Desigo CC V4.2 toutes versions
Siemens	N/A	SCALANCE X206-1LD versions antérieures à V5.2.5
Siemens	N/A	SCALANCE XR324-12M toutes versions
Siemens	N/A	SCALANCE X216 versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X308-2M TS toutes versions
Siemens	N/A	SCALANCE XF206-1 versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X320-1-2LD FE toutes versions
Siemens	N/A	RUGGEDCOM ROX RX1536 versions antérieures à V2.14.1
Siemens	N/A	APOGEE PXC Modular (BACnet) versions antérieures à V3.5.3
Siemens	N/A	SCALANCE XR324-4M PoE TS toutes versions
Siemens	N/A	APOGEE PXC Compact (P2 Ethernet) toutes versions >= V2.8
Siemens	N/A	GMA-Manager toutes versions with OIS running on Debian 9 or earlier
Siemens	N/A	APOGEE MBC (PPC) (P2 Ethernet) toutes versions >= V2.6.3
Siemens	N/A	RUGGEDCOM ROX RX1512 versions antérieures à V2.14.1
Siemens	N/A	Desigo CC V4.1 toutes versions
Siemens	N/A	SCALANCE X304-2FE toutes versions
Siemens	N/A	SCALANCE XF202-2P IRT toutes versions
Siemens	N/A	SCALANCE X308-2LH toutes versions
Siemens	N/A	Desigo CC Compact V4.0 toutes versions
Siemens	N/A	Industrial Edge Management versions antérieures à V1.3
Siemens	N/A	Teamcenter V13.2 versions antérieures à 13.2.0.2
Siemens	N/A	SCALANCE X204-2TS versions antérieures à V5.2.5
Siemens	N/A	Cerberus DMS V4.2 toutes versions
Siemens	N/A	SCALANCE X204-2LD (incl. SIPLUS NET variant) versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X204-2LD TS versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X308-2LH+ toutes versions
Siemens	N/A	SCALANCE X204 IRT toutes versions
Siemens	N/A	SCALANCE X308-2LD toutes versions
Siemens	N/A	SCALANCE X201-3P IRT toutes versions
Siemens	N/A	SCALANCE XR324-4M PoE toutes versions
Siemens	N/A	Teamcenter Active Workspace V5.0 versions antérieures à V5.0.8
Siemens	N/A	SCALANCE X307-3 toutes versions
Siemens	N/A	Teamcenter V13.1 versions antérieures à V13.1.0.5
Siemens	N/A	Cerberus DMS V5.0 versions antérieures à v5.0 QU1
Siemens	N/A	SCALANCE XF204 IRT toutes versions
Siemens	N/A	Simcenter Femap V2020.2 toutes versions
Siemens	N/A	SCALANCE X212-2 (incl. SIPLUS NET variant) versions antérieures à V5.2.5
Siemens	N/A	Siveillance Control toutes versions with OIS running on Debian 9 or earlier
Siemens	N/A	Teamcenter Active Workspace V5.2 versions antérieures à V5.2.1
Siemens	N/A	SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) toutes versions
Siemens	N/A	SCALANCE XF204-2 (incl. SIPLUS NET variant) versions antérieures à V5.2.5

References

Title

Publication Time

Tags

Bulletin de sécurité Siemens ssa-847986 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-549234 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-208530 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-288459 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-987403 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-535380 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-334944 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-676336 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-997732 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-835377 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-109294 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-453715 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-692317 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-756638 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-316383 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-330339 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-500748 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-535997 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-150692 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-413407 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-944498 du 14 septembre 2021	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SINEMA Server versions ant\u00e9rieures \u00e0 V14 SP3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 1543-1 (incl. SIPLUS variants) versions ant\u00e9rieures \u00e0 V3.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X212-2LD versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X202-2 IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC V4.0 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TALON TC Modular (BACnet) versions ant\u00e9rieures \u00e0 V3.5.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204-2FM versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X320-1 FE toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "LOGO! CMR2040 versions ant\u00e9rieures \u00e0 V2.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC RF350M toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X308-2 (incl. SIPLUS NET variant) toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC Compact V5.0 versions ant\u00e9rieures \u00e0 V5.0 QU1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF204 versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF204-2BA IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SINEMA Remote Connect Server versions ant\u00e9rieures \u00e0 V3.0 SP2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter Active Workspace V5.1 versions ant\u00e9rieures \u00e0 V5.1.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X307-3LD toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1511 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204-2 (incl. SIPLUS NET variant) versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XR324-4M EEC toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X224 versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC V5.0 versions ant\u00e9rieures \u00e0 V5.0 QU1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter V13.0 versions ant\u00e9rieures \u00e0 V13.0.0.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204 IRT PRO toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TALON TC Compact (BACnet) versions ant\u00e9rieures \u00e0 V3.5.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Simcenter STAR-CCM+ Viewer versions ant\u00e9rieures \u00e0 V2021.2.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter Active Workspace V4.3 versions ant\u00e9rieures \u00e0 V4.3.10",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Cerberus DMS V4.0 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "APOGEE MEC (PPC) (P2 Ethernet) toutes versions \u003e= V2.6.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 443-1 (incl. SIPLUS variants) toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X310FE toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X206-1 versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX MX5000 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC Compact V4.2 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC Compact V4.1 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1500 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X208 (incl. SIPLUS NET variant) versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X306-1LD FE toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 443-1 Advanced (incl. SIPLUS variants) toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Siveillance Control Pro toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1501 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X202-2P IRT (incl. SIPLUS NET variant) toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SINEC NMS versions ant\u00e9rieures \u00e0 V1.0 SP1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIPROTEC 5 relays with CPU variants CP200 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X307-2 EEC toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Cerberus DMS V4.1 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC RTU 3000 family toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X202-2P IRT PRO toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "LOGO! CMR2020 versions ant\u00e9rieures \u00e0 V2.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Operation Scheduler toutes versions with OIS running on Debian 9 or earlier",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X208PRO versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X408-2 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIPROTEC 5 relays with CPU variants CP300 versions ant\u00e9rieures \u00e0 V8.80",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1400 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "APOGEE PXC Modular (P2 Ethernet) toutes versions \u003e= V2.8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC RF650M toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 1545-1 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "NX 1980 Series versions ant\u00e9rieures \u00e0 V1984",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X302-7 EEC toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC toutes versions with OIS Extension Module",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X308-2M PoE toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 343-1 Lean (incl. SIPLUS variants) toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX5000 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XR324-12M TS toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 343-1 ERPC toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1524 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1510 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIPROTEC 5 relays with CPU variants CP100 versions ant\u00e9rieures \u00e0 V8.80",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X200-4P IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 343-1 (incl. SIPLUS variants) toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF201-3P IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X201-3P IRT PRO toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Simcenter Femap V2021.1 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "APOGEE PXC Compact (BACnet) versions ant\u00e9rieures \u00e0 V3.5.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X310 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIPROTEC 5 relays with CPU variants CP050 versions ant\u00e9rieures \u00e0 V8.80",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X308-2M toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF208 versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter V12.4 versions ant\u00e9rieures \u00e0 V12.4.0.8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC V4.2 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X206-1LD versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XR324-12M toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X216 versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X308-2M TS toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF206-1 versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X320-1-2LD FE toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1536 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "APOGEE PXC Modular (BACnet) versions ant\u00e9rieures \u00e0 V3.5.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XR324-4M PoE TS toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "APOGEE PXC Compact (P2 Ethernet) toutes versions \u003e= V2.8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "GMA-Manager toutes versions with OIS running on Debian 9 or earlier",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "APOGEE MBC (PPC) (P2 Ethernet) toutes versions \u003e= V2.6.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1512 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC V4.1 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X304-2FE toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF202-2P IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X308-2LH toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC Compact V4.0 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Industrial Edge Management versions ant\u00e9rieures \u00e0 V1.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter V13.2 versions ant\u00e9rieures \u00e0 13.2.0.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204-2TS versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Cerberus DMS V4.2 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204-2LD (incl. SIPLUS NET variant) versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204-2LD TS versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X308-2LH+ toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204 IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X308-2LD toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X201-3P IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XR324-4M PoE toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter Active Workspace V5.0 versions ant\u00e9rieures \u00e0 V5.0.8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X307-3 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter V13.1 versions ant\u00e9rieures \u00e0 V13.1.0.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Cerberus DMS V5.0 versions ant\u00e9rieures \u00e0 v5.0 QU1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF204 IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Simcenter Femap V2020.2 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X212-2 (incl. SIPLUS NET variant) versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Siveillance Control toutes versions with OIS running on Debian 9 or earlier",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter Active Workspace V5.2 versions ant\u00e9rieures \u00e0 V5.2.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF204-2 (incl. SIPLUS NET variant) versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2021-37186",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37186"
    },
    {
      "name": "CVE-2021-37190",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37190"
    },
    {
      "name": "CVE-2021-40356",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-40356"
    },
    {
      "name": "CVE-2021-33716",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-33716"
    },
    {
      "name": "CVE-2021-37191",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37191"
    },
    {
      "name": "CVE-2020-36478",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-36478"
    },
    {
      "name": "CVE-2021-37193",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37193"
    },
    {
      "name": "CVE-2020-7461",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-7461"
    },
    {
      "name": "CVE-2021-40354",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-40354"
    },
    {
      "name": "CVE-2021-40355",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-40355"
    },
    {
      "name": "CVE-2016-10011",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-10011"
    },
    {
      "name": "CVE-2021-37201",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37201"
    },
    {
      "name": "CVE-2021-25665",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-25665"
    },
    {
      "name": "CVE-2021-37202",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37202"
    },
    {
      "name": "CVE-2021-33737",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-33737"
    },
    {
      "name": "CVE-2020-36475",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-36475"
    },
    {
      "name": "CVE-2016-10708",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-10708"
    },
    {
      "name": "CVE-2021-37175",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37175"
    },
    {
      "name": "CVE-2021-37174",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37174"
    },
    {
      "name": "CVE-2021-40357",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-40357"
    },
    {
      "name": "CVE-2021-33720",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-33720"
    },
    {
      "name": "CVE-2021-37203",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37203"
    },
    {
      "name": "CVE-2021-37183",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37183"
    },
    {
      "name": "CVE-2021-37184",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37184"
    },
    {
      "name": "CVE-2021-37177",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37177"
    },
    {
      "name": "CVE-2021-37173",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37173"
    },
    {
      "name": "CVE-2021-37200",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37200"
    },
    {
      "name": "CVE-2021-33719",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-33719"
    },
    {
      "name": "CVE-2021-37181",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37181"
    },
    {
      "name": "CVE-2021-31891",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-31891"
    },
    {
      "name": "CVE-2021-37192",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37192"
    },
    {
      "name": "CVE-2021-37206",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37206"
    },
    {
      "name": "CVE-2021-37176",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37176"
    },
    {
      "name": "CVE-2021-27391",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-27391"
    },
    {
      "name": "CVE-2019-10941",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-10941"
    }
  ],
  "links": [],
  "reference": "CERTFR-2021-AVI-706",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2021-09-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nSiemens. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0\ndistance et un contournement de la politique de s\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Siemens",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-847986 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-847986.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-549234 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-549234.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-208530 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-208530.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-288459 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-288459.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-987403 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-987403.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-535380 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-535380.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-334944 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-334944.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-676336 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-676336.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-997732 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-997732.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-835377 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-835377.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-109294 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-109294.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-453715 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-453715.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-692317 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-692317.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-756638 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-756638.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-316383 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-316383.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-330339 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-330339.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-500748 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-500748.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-535997 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-535997.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-150692 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-150692.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-413407 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-413407.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-944498 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf"
    }
  ]
}

CERTFR-2021-AVI-706

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Siemens	N/A	SINEMA Server versions antérieures à V14 SP3
Siemens	N/A	SIMATIC CP 1543-1 (incl. SIPLUS variants) versions antérieures à V3.0
Siemens	N/A	SCALANCE X212-2LD versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X202-2 IRT toutes versions
Siemens	N/A	Desigo CC V4.0 toutes versions
Siemens	N/A	TALON TC Modular (BACnet) versions antérieures à V3.5.3
Siemens	N/A	SCALANCE X204-2FM versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X320-1 FE toutes versions
Siemens	N/A	LOGO! CMR2040 versions antérieures à V2.2
Siemens	N/A	SIMATIC RF350M toutes versions
Siemens	N/A	SCALANCE X308-2 (incl. SIPLUS NET variant) toutes versions
Siemens	N/A	Desigo CC Compact V5.0 versions antérieures à V5.0 QU1
Siemens	N/A	SCALANCE XF204 versions antérieures à V5.2.5
Siemens	N/A	SCALANCE XF204-2BA IRT toutes versions
Siemens	N/A	SINEMA Remote Connect Server versions antérieures à V3.0 SP2
Siemens	N/A	Teamcenter Active Workspace V5.1 versions antérieures à V5.1.5
Siemens	N/A	SCALANCE X307-3LD toutes versions
Siemens	N/A	RUGGEDCOM ROX RX1511 versions antérieures à V2.14.1
Siemens	N/A	SCALANCE X204-2 (incl. SIPLUS NET variant) versions antérieures à V5.2.5
Siemens	N/A	SCALANCE XR324-4M EEC toutes versions
Siemens	N/A	SCALANCE X224 versions antérieures à V5.2.5
Siemens	N/A	Desigo CC V5.0 versions antérieures à V5.0 QU1
Siemens	N/A	Teamcenter V13.0 versions antérieures à V13.0.0.7
Siemens	N/A	SCALANCE X204 IRT PRO toutes versions
Siemens	N/A	TALON TC Compact (BACnet) versions antérieures à V3.5.3
Siemens	N/A	Simcenter STAR-CCM+ Viewer versions antérieures à V2021.2.1
Siemens	N/A	Teamcenter Active Workspace V4.3 versions antérieures à V4.3.10
Siemens	N/A	Cerberus DMS V4.0 toutes versions
Siemens	N/A	APOGEE MEC (PPC) (P2 Ethernet) toutes versions >= V2.6.3
Siemens	N/A	SIMATIC CP 443-1 (incl. SIPLUS variants) toutes versions
Siemens	N/A	SCALANCE X310FE toutes versions
Siemens	N/A	SCALANCE X206-1 versions antérieures à V5.2.5
Siemens	N/A	RUGGEDCOM ROX MX5000 versions antérieures à V2.14.1
Siemens	N/A	Desigo CC Compact V4.2 toutes versions
Siemens	N/A	Desigo CC Compact V4.1 toutes versions
Siemens	N/A	RUGGEDCOM ROX RX1500 versions antérieures à V2.14.1
Siemens	N/A	SCALANCE X208 (incl. SIPLUS NET variant) versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X306-1LD FE toutes versions
Siemens	N/A	SIMATIC CP 443-1 Advanced (incl. SIPLUS variants) toutes versions
Siemens	N/A	Siveillance Control Pro toutes versions
Siemens	N/A	RUGGEDCOM ROX RX1501 versions antérieures à V2.14.1
Siemens	N/A	SCALANCE X202-2P IRT (incl. SIPLUS NET variant) toutes versions
Siemens	N/A	SINEC NMS versions antérieures à V1.0 SP1
Siemens	N/A	SIPROTEC 5 relays with CPU variants CP200 toutes versions
Siemens	N/A	SCALANCE X307-2 EEC toutes versions
Siemens	N/A	Cerberus DMS V4.1 toutes versions
Siemens	N/A	SIMATIC RTU 3000 family toutes versions
Siemens	N/A	SCALANCE X202-2P IRT PRO toutes versions
Siemens	N/A	LOGO! CMR2020 versions antérieures à V2.2
Siemens	N/A	Operation Scheduler toutes versions with OIS running on Debian 9 or earlier
Siemens	N/A	SCALANCE X208PRO versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X408-2 toutes versions
Siemens	N/A	SIPROTEC 5 relays with CPU variants CP300 versions antérieures à V8.80
Siemens	N/A	RUGGEDCOM ROX RX1400 versions antérieures à V2.14.1
Siemens	N/A	APOGEE PXC Modular (P2 Ethernet) toutes versions >= V2.8
Siemens	N/A	SIMATIC RF650M toutes versions
Siemens	N/A	SIMATIC CP 1545-1 toutes versions
Siemens	N/A	NX 1980 Series versions antérieures à V1984
Siemens	N/A	SCALANCE X302-7 EEC toutes versions
Siemens	N/A	Desigo CC toutes versions with OIS Extension Module
Siemens	N/A	SCALANCE X308-2M PoE toutes versions
Siemens	N/A	SIMATIC CP 343-1 Lean (incl. SIPLUS variants) toutes versions
Siemens	N/A	RUGGEDCOM ROX RX5000 versions antérieures à V2.14.1
Siemens	N/A	SCALANCE XR324-12M TS toutes versions
Siemens	N/A	SIMATIC CP 343-1 ERPC toutes versions
Siemens	N/A	RUGGEDCOM ROX RX1524 versions antérieures à V2.14.1
Siemens	N/A	RUGGEDCOM ROX RX1510 versions antérieures à V2.14.1
Siemens	N/A	SIPROTEC 5 relays with CPU variants CP100 versions antérieures à V8.80
Siemens	N/A	SCALANCE X200-4P IRT toutes versions
Siemens	N/A	SIMATIC CP 343-1 (incl. SIPLUS variants) toutes versions
Siemens	N/A	SCALANCE XF201-3P IRT toutes versions
Siemens	N/A	SCALANCE X201-3P IRT PRO toutes versions
Siemens	N/A	Simcenter Femap V2021.1 toutes versions
Siemens	N/A	APOGEE PXC Compact (BACnet) versions antérieures à V3.5.3
Siemens	N/A	SCALANCE X310 toutes versions
Siemens	N/A	SIPROTEC 5 relays with CPU variants CP050 versions antérieures à V8.80
Siemens	N/A	SCALANCE X308-2M toutes versions
Siemens	N/A	SCALANCE XF208 versions antérieures à V5.2.5
Siemens	N/A	Teamcenter V12.4 versions antérieures à V12.4.0.8
Siemens	N/A	Desigo CC V4.2 toutes versions
Siemens	N/A	SCALANCE X206-1LD versions antérieures à V5.2.5
Siemens	N/A	SCALANCE XR324-12M toutes versions
Siemens	N/A	SCALANCE X216 versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X308-2M TS toutes versions
Siemens	N/A	SCALANCE XF206-1 versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X320-1-2LD FE toutes versions
Siemens	N/A	RUGGEDCOM ROX RX1536 versions antérieures à V2.14.1
Siemens	N/A	APOGEE PXC Modular (BACnet) versions antérieures à V3.5.3
Siemens	N/A	SCALANCE XR324-4M PoE TS toutes versions
Siemens	N/A	APOGEE PXC Compact (P2 Ethernet) toutes versions >= V2.8
Siemens	N/A	GMA-Manager toutes versions with OIS running on Debian 9 or earlier
Siemens	N/A	APOGEE MBC (PPC) (P2 Ethernet) toutes versions >= V2.6.3
Siemens	N/A	RUGGEDCOM ROX RX1512 versions antérieures à V2.14.1
Siemens	N/A	Desigo CC V4.1 toutes versions
Siemens	N/A	SCALANCE X304-2FE toutes versions
Siemens	N/A	SCALANCE XF202-2P IRT toutes versions
Siemens	N/A	SCALANCE X308-2LH toutes versions
Siemens	N/A	Desigo CC Compact V4.0 toutes versions
Siemens	N/A	Industrial Edge Management versions antérieures à V1.3
Siemens	N/A	Teamcenter V13.2 versions antérieures à 13.2.0.2
Siemens	N/A	SCALANCE X204-2TS versions antérieures à V5.2.5
Siemens	N/A	Cerberus DMS V4.2 toutes versions
Siemens	N/A	SCALANCE X204-2LD (incl. SIPLUS NET variant) versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X204-2LD TS versions antérieures à V5.2.5
Siemens	N/A	SCALANCE X308-2LH+ toutes versions
Siemens	N/A	SCALANCE X204 IRT toutes versions
Siemens	N/A	SCALANCE X308-2LD toutes versions
Siemens	N/A	SCALANCE X201-3P IRT toutes versions
Siemens	N/A	SCALANCE XR324-4M PoE toutes versions
Siemens	N/A	Teamcenter Active Workspace V5.0 versions antérieures à V5.0.8
Siemens	N/A	SCALANCE X307-3 toutes versions
Siemens	N/A	Teamcenter V13.1 versions antérieures à V13.1.0.5
Siemens	N/A	Cerberus DMS V5.0 versions antérieures à v5.0 QU1
Siemens	N/A	SCALANCE XF204 IRT toutes versions
Siemens	N/A	Simcenter Femap V2020.2 toutes versions
Siemens	N/A	SCALANCE X212-2 (incl. SIPLUS NET variant) versions antérieures à V5.2.5
Siemens	N/A	Siveillance Control toutes versions with OIS running on Debian 9 or earlier
Siemens	N/A	Teamcenter Active Workspace V5.2 versions antérieures à V5.2.1
Siemens	N/A	SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) toutes versions
Siemens	N/A	SCALANCE XF204-2 (incl. SIPLUS NET variant) versions antérieures à V5.2.5

References

Title

Publication Time

Tags

Bulletin de sécurité Siemens ssa-847986 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-549234 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-208530 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-288459 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-987403 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-535380 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-334944 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-676336 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-997732 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-835377 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-109294 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-453715 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-692317 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-756638 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-316383 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-330339 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-500748 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-535997 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-150692 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-413407 du 14 septembre 2021	None	vendor-advisory
Bulletin de sécurité Siemens ssa-944498 du 14 septembre 2021	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SINEMA Server versions ant\u00e9rieures \u00e0 V14 SP3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 1543-1 (incl. SIPLUS variants) versions ant\u00e9rieures \u00e0 V3.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X212-2LD versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X202-2 IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC V4.0 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TALON TC Modular (BACnet) versions ant\u00e9rieures \u00e0 V3.5.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204-2FM versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X320-1 FE toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "LOGO! CMR2040 versions ant\u00e9rieures \u00e0 V2.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC RF350M toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X308-2 (incl. SIPLUS NET variant) toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC Compact V5.0 versions ant\u00e9rieures \u00e0 V5.0 QU1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF204 versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF204-2BA IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SINEMA Remote Connect Server versions ant\u00e9rieures \u00e0 V3.0 SP2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter Active Workspace V5.1 versions ant\u00e9rieures \u00e0 V5.1.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X307-3LD toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1511 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204-2 (incl. SIPLUS NET variant) versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XR324-4M EEC toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X224 versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC V5.0 versions ant\u00e9rieures \u00e0 V5.0 QU1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter V13.0 versions ant\u00e9rieures \u00e0 V13.0.0.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204 IRT PRO toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TALON TC Compact (BACnet) versions ant\u00e9rieures \u00e0 V3.5.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Simcenter STAR-CCM+ Viewer versions ant\u00e9rieures \u00e0 V2021.2.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter Active Workspace V4.3 versions ant\u00e9rieures \u00e0 V4.3.10",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Cerberus DMS V4.0 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "APOGEE MEC (PPC) (P2 Ethernet) toutes versions \u003e= V2.6.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 443-1 (incl. SIPLUS variants) toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X310FE toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X206-1 versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX MX5000 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC Compact V4.2 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC Compact V4.1 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1500 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X208 (incl. SIPLUS NET variant) versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X306-1LD FE toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 443-1 Advanced (incl. SIPLUS variants) toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Siveillance Control Pro toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1501 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X202-2P IRT (incl. SIPLUS NET variant) toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SINEC NMS versions ant\u00e9rieures \u00e0 V1.0 SP1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIPROTEC 5 relays with CPU variants CP200 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X307-2 EEC toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Cerberus DMS V4.1 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC RTU 3000 family toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X202-2P IRT PRO toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "LOGO! CMR2020 versions ant\u00e9rieures \u00e0 V2.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Operation Scheduler toutes versions with OIS running on Debian 9 or earlier",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X208PRO versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X408-2 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIPROTEC 5 relays with CPU variants CP300 versions ant\u00e9rieures \u00e0 V8.80",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1400 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "APOGEE PXC Modular (P2 Ethernet) toutes versions \u003e= V2.8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC RF650M toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 1545-1 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "NX 1980 Series versions ant\u00e9rieures \u00e0 V1984",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X302-7 EEC toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC toutes versions with OIS Extension Module",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X308-2M PoE toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 343-1 Lean (incl. SIPLUS variants) toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX5000 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XR324-12M TS toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 343-1 ERPC toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1524 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1510 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIPROTEC 5 relays with CPU variants CP100 versions ant\u00e9rieures \u00e0 V8.80",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X200-4P IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 343-1 (incl. SIPLUS variants) toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF201-3P IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X201-3P IRT PRO toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Simcenter Femap V2021.1 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "APOGEE PXC Compact (BACnet) versions ant\u00e9rieures \u00e0 V3.5.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X310 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIPROTEC 5 relays with CPU variants CP050 versions ant\u00e9rieures \u00e0 V8.80",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X308-2M toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF208 versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter V12.4 versions ant\u00e9rieures \u00e0 V12.4.0.8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC V4.2 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X206-1LD versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XR324-12M toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X216 versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X308-2M TS toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF206-1 versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X320-1-2LD FE toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1536 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "APOGEE PXC Modular (BACnet) versions ant\u00e9rieures \u00e0 V3.5.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XR324-4M PoE TS toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "APOGEE PXC Compact (P2 Ethernet) toutes versions \u003e= V2.8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "GMA-Manager toutes versions with OIS running on Debian 9 or earlier",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "APOGEE MBC (PPC) (P2 Ethernet) toutes versions \u003e= V2.6.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "RUGGEDCOM ROX RX1512 versions ant\u00e9rieures \u00e0 V2.14.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC V4.1 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X304-2FE toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF202-2P IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X308-2LH toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Desigo CC Compact V4.0 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Industrial Edge Management versions ant\u00e9rieures \u00e0 V1.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter V13.2 versions ant\u00e9rieures \u00e0 13.2.0.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204-2TS versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Cerberus DMS V4.2 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204-2LD (incl. SIPLUS NET variant) versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204-2LD TS versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X308-2LH+ toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204 IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X308-2LD toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X201-3P IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XR324-4M PoE toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter Active Workspace V5.0 versions ant\u00e9rieures \u00e0 V5.0.8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X307-3 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter V13.1 versions ant\u00e9rieures \u00e0 V13.1.0.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Cerberus DMS V5.0 versions ant\u00e9rieures \u00e0 v5.0 QU1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF204 IRT toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Simcenter Femap V2020.2 toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X212-2 (incl. SIPLUS NET variant) versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Siveillance Control toutes versions with OIS running on Debian 9 or earlier",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Teamcenter Active Workspace V5.2 versions ant\u00e9rieures \u00e0 V5.2.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) toutes versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF204-2 (incl. SIPLUS NET variant) versions ant\u00e9rieures \u00e0 V5.2.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2021-37186",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37186"
    },
    {
      "name": "CVE-2021-37190",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37190"
    },
    {
      "name": "CVE-2021-40356",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-40356"
    },
    {
      "name": "CVE-2021-33716",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-33716"
    },
    {
      "name": "CVE-2021-37191",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37191"
    },
    {
      "name": "CVE-2020-36478",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-36478"
    },
    {
      "name": "CVE-2021-37193",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37193"
    },
    {
      "name": "CVE-2020-7461",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-7461"
    },
    {
      "name": "CVE-2021-40354",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-40354"
    },
    {
      "name": "CVE-2021-40355",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-40355"
    },
    {
      "name": "CVE-2016-10011",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-10011"
    },
    {
      "name": "CVE-2021-37201",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37201"
    },
    {
      "name": "CVE-2021-25665",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-25665"
    },
    {
      "name": "CVE-2021-37202",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37202"
    },
    {
      "name": "CVE-2021-33737",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-33737"
    },
    {
      "name": "CVE-2020-36475",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-36475"
    },
    {
      "name": "CVE-2016-10708",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-10708"
    },
    {
      "name": "CVE-2021-37175",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37175"
    },
    {
      "name": "CVE-2021-37174",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37174"
    },
    {
      "name": "CVE-2021-40357",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-40357"
    },
    {
      "name": "CVE-2021-33720",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-33720"
    },
    {
      "name": "CVE-2021-37203",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37203"
    },
    {
      "name": "CVE-2021-37183",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37183"
    },
    {
      "name": "CVE-2021-37184",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37184"
    },
    {
      "name": "CVE-2021-37177",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37177"
    },
    {
      "name": "CVE-2021-37173",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37173"
    },
    {
      "name": "CVE-2021-37200",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37200"
    },
    {
      "name": "CVE-2021-33719",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-33719"
    },
    {
      "name": "CVE-2021-37181",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37181"
    },
    {
      "name": "CVE-2021-31891",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-31891"
    },
    {
      "name": "CVE-2021-37192",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37192"
    },
    {
      "name": "CVE-2021-37206",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37206"
    },
    {
      "name": "CVE-2021-37176",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37176"
    },
    {
      "name": "CVE-2021-27391",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-27391"
    },
    {
      "name": "CVE-2019-10941",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-10941"
    }
  ],
  "links": [],
  "reference": "CERTFR-2021-AVI-706",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2021-09-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nSiemens. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0\ndistance et un contournement de la politique de s\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Siemens",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-847986 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-847986.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-549234 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-549234.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-208530 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-208530.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-288459 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-288459.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-987403 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-987403.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-535380 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-535380.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-334944 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-334944.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-676336 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-676336.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-997732 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-997732.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-835377 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-835377.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-109294 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-109294.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-453715 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-453715.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-692317 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-692317.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-756638 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-756638.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-316383 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-316383.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-330339 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-330339.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-500748 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-500748.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-535997 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-535997.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-150692 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-150692.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-413407 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-413407.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-944498 du 14 septembre 2021",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf"
    }
  ]
}

CNVD-2021-71447

Vulnerability from cnvd - Published: 2021-09-16

Title

多款Siemens APOGEE MBC产品缓冲区溢出漏洞

Description

Siemens APOGEE MBC是德国西门子（Siemens）公司的一个模块化楼宇控制器。多款Siemens APOGEE MBC产品存在缓冲区溢出漏洞，未经身份验证的远程攻击者可利用此漏洞以root权限在设备上执行任意代码。

Severity

高

Patch Name

多款Siemens APOGEE MBC产品缓冲区溢出漏洞的补丁

Patch Description

Siemens APOGEE MBC是德国西门子（Siemens）公司的一个模块化楼宇控制器。多款Siemens APOGEE MBC产品存在缓冲区溢出漏洞，未经身份验证的远程攻击者可利用此漏洞以root权限在设备上执行任意代码。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

用户可参考如下供应商提供的安全公告获得补丁信息： https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf

Reference

https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf

Impacted products

Name
['Siemens APOGEE MBC (PPC) (P2 Ethernet) >= V2.6.3', 'Siemens APOGEE MEC (PPC) (P2 Ethernet) >= V2.6.3', 'Siemens APOGEE PXC Compact (BACnet) < V3.5.3', 'Siemens APOGEE PXC Compact (P2 Ethernet) >= V2.8', 'Siemens APOGEE PXC Modular (BACnet) < V3.5.3', 'Siemens APOGEE PXC Modular (P2 Ethernet) >= V2.8', 'Siemens TALON TC Compact (BACnet) < V3.5.3', 'Siemens TALON TC Modular (BACnet) < V3.5.3']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-27391"
    }
  },
  "description": "Siemens APOGEE MBC\u662f\u5fb7\u56fd\u897f\u95e8\u5b50\uff08Siemens\uff09\u516c\u53f8\u7684\u4e00\u4e2a\u6a21\u5757\u5316\u697c\u5b87\u63a7\u5236\u5668\u3002\n\n\u591a\u6b3eSiemens APOGEE MBC\u4ea7\u54c1\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u672a\u7ecf\u8eab\u4efd\u9a8c\u8bc1\u7684\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u6b64\u6f0f\u6d1e\u4ee5root\u6743\u9650\u5728\u8bbe\u5907\u4e0a\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u4f9b\u5e94\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-71447",
  "openTime": "2021-09-16",
  "patchDescription": "Siemens APOGEE MBC\u662f\u5fb7\u56fd\u897f\u95e8\u5b50\uff08Siemens\uff09\u516c\u53f8\u7684\u4e00\u4e2a\u6a21\u5757\u5316\u697c\u5b87\u63a7\u5236\u5668\u3002\r\n\r\n\u591a\u6b3eSiemens APOGEE MBC\u4ea7\u54c1\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u672a\u7ecf\u8eab\u4efd\u9a8c\u8bc1\u7684\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u6b64\u6f0f\u6d1e\u4ee5root\u6743\u9650\u5728\u8bbe\u5907\u4e0a\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "\u591a\u6b3eSiemens APOGEE MBC\u4ea7\u54c1\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Siemens APOGEE MBC (PPC) (P2 Ethernet) \u003e= V2.6.3",
      "Siemens APOGEE MEC (PPC) (P2 Ethernet) \u003e= V2.6.3",
      "Siemens APOGEE PXC Compact (BACnet) \u003c V3.5.3",
      "Siemens APOGEE PXC Compact (P2 Ethernet) \u003e= V2.8",
      "Siemens APOGEE PXC Modular (BACnet) \u003c V3.5.3",
      "Siemens APOGEE PXC Modular (P2 Ethernet) \u003e= V2.8",
      "Siemens TALON TC Compact (BACnet) \u003c V3.5.3",
      "Siemens TALON TC Modular (BACnet) \u003c V3.5.3"
    ]
  },
  "referenceLink": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf",
  "serverity": "\u9ad8",
  "submitTime": "2021-09-15",
  "title": "\u591a\u6b3eSiemens APOGEE MBC\u4ea7\u54c1\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e"
}

GHSA-98PM-V23P-R2WF

Vulnerability from github – Published: 2022-05-24 19:14 – Updated: 2025-04-23 21:30

Details

Severity ?

9.8 (Critical)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2021-27391"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-120"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2021-09-14T11:15:00Z",
    "severity": "CRITICAL"
  },
  "details": "A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE PXC Compact (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions \u003e= V2.8), APOGEE PXC Modular (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions \u003e= V2.8), TALON TC Compact (BACnet) (All versions \u003c V3.5.3), TALON TC Modular (BACnet) (All versions \u003c V3.5.3). The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow. An unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges.",
  "id": "GHSA-98pm-v23p-r2wf",
  "modified": "2025-04-23T21:30:29Z",
  "published": "2022-05-24T19:14:32Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-27391"
    },
    {
      "type": "WEB",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

ICSA-21-257-07

Vulnerability from csaf_cisa - Published: 2021-09-14 00:00 - Updated: 2025-05-06 06:00

Summary

Siemens APOGEE and TALON

Notes

Summary

General Recommendations

Additional Resources

For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories

Legal Notice

All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.

Advisory Conversion Disclaimer

This CISA CSAF advisory was converted from Siemens ProductCERT's CSAF advisory.

Critical infrastructure sectors

Multiple

Countries/areas deployed

Worldwide

Company headquarters location

Germany

Recommended Practices

CISA recommends users take defensive measures to minimize the exploitation risk of these vulnerabilities.

Recommended Practices

Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.

Recommended Practices

Locate control system networks and remote devices behind firewalls and isolate them from business networks.

Recommended Practices

When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.

Recommended Practices

CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.

Recommended Practices

CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.

Recommended Practices

CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.

Recommended Practices

Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "organization": "Siemens ProductCERT",
        "summary": "reporting this vulnerability to CISA."
      },
      {
        "names": [
          "Paul Noalhyt",
          "David Doggett"
        ],
        "organization": "Red Balloon Security",
        "summary": "coordinated disclosure"
      }
    ],
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Disclosure is not limited",
      "tlp": {
        "label": "WHITE",
        "url": "https://us-cert.cisa.gov/tlp/"
      }
    },
    "notes": [
      {
        "category": "summary",
        "text": "A buffer overflow vulnerability in the integrated web server of multiple APOGEE and TALON automation devices could allow a remote attacker to execute arbitrary code on the devices with root privileges.\n\nAffected devices include the APOGEE MBC/MEC/PXC P2 Ethernet devices with Power Open Processors (PPC), APOGEE PXC BACnet devices, and TALON TC BACnet devices.\n\nSiemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends countermeasures for products where updates are not, or not yet available.",
        "title": "Summary"
      },
      {
        "category": "general",
        "text": "As a general security measure Siemens strongly recommends to protect network access to affected products with appropriate mechanisms. It is advised to follow recommended security practices in order to run the devices in a protected IT environment.",
        "title": "General Recommendations"
      },
      {
        "category": "general",
        "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.",
        "title": "Terms of Use"
      },
      {
        "category": "legal_disclaimer",
        "text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
        "title": "Legal Notice"
      },
      {
        "category": "other",
        "text": "This CISA CSAF advisory was converted from Siemens ProductCERT\u0027s CSAF advisory.",
        "title": "Advisory Conversion Disclaimer"
      },
      {
        "category": "other",
        "text": "Multiple",
        "title": "Critical infrastructure sectors"
      },
      {
        "category": "other",
        "text": "Worldwide",
        "title": "Countries/areas deployed"
      },
      {
        "category": "other",
        "text": "Germany",
        "title": "Company headquarters location"
      },
      {
        "category": "general",
        "text": "CISA recommends users take defensive measures to minimize the exploitation risk of these vulnerabilities.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Locate control system networks and remote devices behind firewalls and isolate them from business networks.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
        "title": "Recommended Practices"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "central@cisa.dhs.gov",
      "name": "CISA",
      "namespace": "https://www.cisa.gov/"
    },
    "references": [
      {
        "category": "self",
        "summary": "SSA-944498: Buffer Overflow Vulnerability in Web Server of APOGEE and TALON Automation Devices - CSAF Version",
        "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-944498.json"
      },
      {
        "category": "self",
        "summary": "SSA-944498: Buffer Overflow Vulnerability in Web Server of APOGEE and TALON Automation Devices - TXT Version",
        "url": "https://cert-portal.siemens.com/productcert/txt/ssa-944498.txt"
      },
      {
        "category": "self",
        "summary": "SSA-944498: Buffer Overflow Vulnerability in Web Server of APOGEE and TALON Automation Devices - PDF Version",
        "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf"
      },
      {
        "category": "self",
        "summary": "ICS Advisory ICSA-21-257-07 JSON",
        "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2021/icsa-21-257-07.json"
      },
      {
        "category": "self",
        "summary": "ICS Advisory ICSA-21-257-07 - Web Version",
        "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-21-257-07"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/topics/industrial-control-systems"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
      }
    ],
    "title": "Siemens APOGEE and TALON",
    "tracking": {
      "current_release_date": "2025-05-06T06:00:00.000000Z",
      "generator": {
        "engine": {
          "name": "CISA CSAF Generator",
          "version": "1.0.0"
        }
      },
      "id": "ICSA-21-257-07",
      "initial_release_date": "2021-09-14T00:00:00.000000Z",
      "revision_history": [
        {
          "date": "2021-09-14T00:00:00.000000Z",
          "legacy_version": "1.0",
          "number": "1",
          "summary": "Publication Date"
        },
        {
          "date": "2025-05-06T06:00:00.000000Z",
          "legacy_version": "Revision",
          "number": "2",
          "summary": "Revision - Fixing typos"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003e=V2.6.3",
                "product": {
                  "name": "APOGEE MBC (PPC) (P2 Ethernet)",
                  "product_id": "CSAFPID-0001"
                }
              }
            ],
            "category": "product_name",
            "name": "APOGEE MBC (PPC) (P2 Ethernet)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003e=V2.6.3",
                "product": {
                  "name": "APOGEE MEC (PPC) (P2 Ethernet)",
                  "product_id": "CSAFPID-0002"
                }
              }
            ],
            "category": "product_name",
            "name": "APOGEE MEC (PPC) (P2 Ethernet)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003cV3.5.3",
                "product": {
                  "name": "APOGEE PXC Compact (BACnet)",
                  "product_id": "CSAFPID-0003"
                }
              }
            ],
            "category": "product_name",
            "name": "APOGEE PXC Compact (BACnet)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003e=V2.8",
                "product": {
                  "name": "APOGEE PXC Compact (P2 Ethernet)",
                  "product_id": "CSAFPID-0004"
                }
              }
            ],
            "category": "product_name",
            "name": "APOGEE PXC Compact (P2 Ethernet)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003cV3.5.3",
                "product": {
                  "name": "APOGEE PXC Modular (BACnet)",
                  "product_id": "CSAFPID-0005"
                }
              }
            ],
            "category": "product_name",
            "name": "APOGEE PXC Modular (BACnet)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003e=V2.8",
                "product": {
                  "name": "APOGEE PXC Modular (P2 Ethernet)",
                  "product_id": "CSAFPID-0006"
                }
              }
            ],
            "category": "product_name",
            "name": "APOGEE PXC Modular (P2 Ethernet)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003cV3.5.3",
                "product": {
                  "name": "TALON TC Compact (BACnet)",
                  "product_id": "CSAFPID-0007"
                }
              }
            ],
            "category": "product_name",
            "name": "TALON TC Compact (BACnet)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003cV3.5.3",
                "product": {
                  "name": "TALON TC Modular (BACnet)",
                  "product_id": "CSAFPID-0008"
                }
              }
            ],
            "category": "product_name",
            "name": "TALON TC Modular (BACnet)"
          }
        ],
        "category": "vendor",
        "name": "Siemens"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-27391",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "notes": [
        {
          "category": "summary",
          "text": "The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow.\n\nAn unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008"
        ]
      },
      "references": [
        {
          "summary": "CVE-2021-27391 Mitre 5.0 json",
          "url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-27391.json"
        }
      ],
      "remediations": [
        {
          "category": "none_available",
          "details": "Currently no remediation is available",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0004",
            "CSAFPID-0006"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to V3.5.3 or later version",
          "product_ids": [
            "CSAFPID-0003",
            "CSAFPID-0005",
            "CSAFPID-0007",
            "CSAFPID-0008"
          ]
        },
        {
          "category": "mitigation",
          "details": "Please contact your local Siemens office for support",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008"
          ]
        },
        {
          "category": "mitigation",
          "details": "Restrict access to the device, especially to the web interface (80/tcp and 443/tcp), to trusted IP addresses only",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008"
          ]
        },
        {
          "category": "mitigation",
          "details": "Disable the integrated web server",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:T/RC:C",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008"
          ]
        }
      ],
      "title": "CVE-2021-27391"
    }
  ]
}

FKIE_CVE-2021-27391

Vulnerability from fkie_nvd - Published: 2021-09-14 11:15 - Updated: 2025-04-23 20:15

Severity ?

9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	productcert@siemens.com	https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf	Patch, Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf	Patch, Vendor Advisory

Impacted products

Vendor	Product	Version
siemens	apogee_mbc_\(ppc\)_\(p2_ethernet\)_firmware	*
siemens	apogee_mbc_\(ppc\)_\(p2_ethernet\)	*
siemens	apogee_mec_\(ppc\)_\(p2_ethernet\)_firmware	*
siemens	apogee_mec_\(ppc\)_\(p2_ethernet\)	*
siemens	apogee_pxc_bacnet_automation_controller_firmware	*
siemens	apogee_pxc_bacnet_automation_controller	-
siemens	apogee_pxc_compact_\(p2_ethernet\)_firmware	*
siemens	apogee_pxc_compact_\(p2_ethernet\)	*
siemens	apogee_pxc_modular_\(bacnet\)_firmware	*
siemens	apogee_pxc_modular_\(bacnet\)	*
siemens	apogee_pxc_modular_\(p2_ethernet\)_firmware	*
siemens	apogee_pxc_modular_\(p2_ethernet\)	*
siemens	talon_tc_compact_\(bacnet\)_firmware	*
siemens	talon_tc_compact_\(bacnet\)	*
siemens	talon_tc_modular_\(bacnet\)_firmware	*
siemens	talon_tc_modular_\(bacnet\)	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:siemens:apogee_mbc_\\(ppc\\)_\\(p2_ethernet\\)_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "31740BC7-0AA1-407C-A09A-80F5F988B622",
              "versionEndIncluding": "2.6.3",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:siemens:apogee_mbc_\\(ppc\\)_\\(p2_ethernet\\):*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7DCA333D-E244-474C-85A1-28D58BD52B9A",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:siemens:apogee_mec_\\(ppc\\)_\\(p2_ethernet\\)_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "10AE7480-2439-4C4F-A2A9-534ADB3465FC",
              "versionEndIncluding": "2.6.3",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:siemens:apogee_mec_\\(ppc\\)_\\(p2_ethernet\\):*:*:*:*:*:*:*:*",
              "matchCriteriaId": "4C6D6BE1-3FBA-4CFB-BCB2-69CD32C2B66C",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:siemens:apogee_pxc_bacnet_automation_controller_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6ED57DFE-CB12-4448-97C8-FA7E91F14270",
              "versionEndExcluding": "3.5.3",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:siemens:apogee_pxc_bacnet_automation_controller:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B0CFFD37-F58F-48D3-A466-06CAAC8BD580",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:siemens:apogee_pxc_compact_\\(p2_ethernet\\)_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8AB7990B-3DEF-4FB9-A577-63D5BFFA6FB0",
              "versionEndIncluding": "2.8",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:siemens:apogee_pxc_compact_\\(p2_ethernet\\):*:*:*:*:*:*:*:*",
              "matchCriteriaId": "86B37170-74CC-44A2-A069-C91E1B8A3877",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:siemens:apogee_pxc_modular_\\(bacnet\\)_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "68DB98DC-274A-403B-846A-0B3F54A1AC4A",
              "versionEndExcluding": "3.5.3",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:siemens:apogee_pxc_modular_\\(bacnet\\):*:*:*:*:*:*:*:*",
              "matchCriteriaId": "63A8FFF6-EB8F-4159-B8E7-6619780EE5F0",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:siemens:apogee_pxc_modular_\\(p2_ethernet\\)_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "EC73A707-FD2E-4ACA-8F53-CE82033952B7",
              "versionEndIncluding": "2.8",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:siemens:apogee_pxc_modular_\\(p2_ethernet\\):*:*:*:*:*:*:*:*",
              "matchCriteriaId": "78EE7A2C-2967-40E5-8485-D90E087F7885",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:siemens:talon_tc_compact_\\(bacnet\\)_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6C746D61-2372-41AF-B074-1BE5B82418DA",
              "versionEndExcluding": "3.5.3",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:siemens:talon_tc_compact_\\(bacnet\\):*:*:*:*:*:*:*:*",
              "matchCriteriaId": "173D1A0C-FCC9-454B-B701-57B1EB83473D",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:siemens:talon_tc_modular_\\(bacnet\\)_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4755D15-F0E4-49D1-8176-4C7D7F5D5421",
              "versionEndExcluding": "3.5.3",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:siemens:talon_tc_modular_\\(bacnet\\):*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8862F30B-F2C6-4B03-965D-36AC1F3B9490",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE PXC Compact (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions \u003e= V2.8), APOGEE PXC Modular (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions \u003e= V2.8), TALON TC Compact (BACnet) (All versions \u003c V3.5.3), TALON TC Modular (BACnet) (All versions \u003c V3.5.3). The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow. An unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges."
    },
    {
      "lang": "es",
      "value": "Se ha identificado una vulnerabilidad en APOGEE MBC (PPC) (P2 Ethernet) (Todas las versiones posteriores a V2.6.3, incluy\u00e9ndola), APOGEE MEC (PPC) (P2 Ethernet) (Todas las versiones posteriores a V2.6.3, incluy\u00e9ndola), APOGEE PXC Compact (BACnet) (Todas las versiones anteriores a V3.5.3), APOGEE PXC Compact (P2 Ethernet) (Todas las versiones posteriores a V2.8, incluy\u00e9ndola), APOGEE PXC Modular (BACnet) (Todas las versiones anteriores a V3.5.3), APOGEE PXC Modular (P2 Ethernet) (Todas las versiones posteriores a V2.8, incluy\u00e9ndola), TALON TC Compact (BACnet) (Todas las versiones anteriores a V3.5.3), TALON TC Modular (BACnet) (Todas las versiones anteriores a V3.5.3). El servidor web de los dispositivos afectados carece de una comprobaci\u00f3n de l\u00edmites apropiada cuando analiza el par\u00e1metro Host en las peticiones HTTP, que podr\u00eda conllevar un desbordamiento del b\u00fafer. Un atacante remoto no autenticado podr\u00eda explotar esta vulnerabilidad para ejecutar c\u00f3digo arbitrario en el dispositivo con privilegios de root"
    }
  ],
  "id": "CVE-2021-27391",
  "lastModified": "2025-04-23T20:15:22.940",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2021-09-14T11:15:23.913",
  "references": [
    {
      "source": "productcert@siemens.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf"
    }
  ],
  "sourceIdentifier": "productcert@siemens.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-120"
        }
      ],
      "source": "productcert@siemens.com",
      "type": "Primary"
    }
  ]
}

GSD-2021-27391

Vulnerability from gsd - Updated: 2023-12-13 01:23

Details

Aliases

CVE-2021-27391

Aliases

CVE-2021-27391

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2021-27391",
    "description": "A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE PXC Compact (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions \u003e= V2.8), APOGEE PXC Modular (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions \u003e= V2.8), TALON TC Compact (BACnet) (All versions \u003c V3.5.3), TALON TC Modular (BACnet) (All versions \u003c V3.5.3). The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow. An unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges.",
    "id": "GSD-2021-27391"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2021-27391"
      ],
      "details": "A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE PXC Compact (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions \u003e= V2.8), APOGEE PXC Modular (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions \u003e= V2.8), TALON TC Compact (BACnet) (All versions \u003c V3.5.3), TALON TC Modular (BACnet) (All versions \u003c V3.5.3). The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow. An unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges.",
      "id": "GSD-2021-27391",
      "modified": "2023-12-13T01:23:36.006232Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "productcert@siemens.com",
        "ID": "CVE-2021-27391",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "APOGEE MBC (PPC) (P2 Ethernet)",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003e= V2.6.3"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "APOGEE MEC (PPC) (P2 Ethernet)",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003e= V2.6.3"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "APOGEE PXC Compact (BACnet)",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003c V3.5.3"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "APOGEE PXC Compact (P2 Ethernet)",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003e= V2.8"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "APOGEE PXC Modular (BACnet)",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003c V3.5.3"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "APOGEE PXC Modular (P2 Ethernet)",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003e= V2.8"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "TALON TC Compact (BACnet)",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003c V3.5.3"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "TALON TC Modular (BACnet)",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "All versions \u003c V3.5.3"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Siemens"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE PXC Compact (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions \u003e= V2.8), APOGEE PXC Modular (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions \u003e= V2.8), TALON TC Compact (BACnet) (All versions \u003c V3.5.3), TALON TC Modular (BACnet) (All versions \u003c V3.5.3). The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow. An unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "CWE-120: Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf",
            "refsource": "MISC",
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:apogee_mbc_\\(ppc\\)_\\(p2_ethernet\\)_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "2.6.3",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:apogee_mbc_\\(ppc\\)_\\(p2_ethernet\\):*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:apogee_mec_\\(ppc\\)_\\(p2_ethernet\\)_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "2.6.3",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:apogee_mec_\\(ppc\\)_\\(p2_ethernet\\):*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:apogee_pxc_bacnet_automation_controller_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "3.5.3",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:apogee_pxc_bacnet_automation_controller:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:apogee_pxc_compact_\\(p2_ethernet\\)_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "2.8",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:apogee_pxc_compact_\\(p2_ethernet\\):*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:apogee_pxc_modular_\\(bacnet\\)_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "3.5.3",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:apogee_pxc_modular_\\(bacnet\\):*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:apogee_pxc_modular_\\(p2_ethernet\\)_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "2.8",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:apogee_pxc_modular_\\(p2_ethernet\\):*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:talon_tc_compact_\\(bacnet\\)_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "3.5.3",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:talon_tc_compact_\\(bacnet\\):*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:siemens:talon_tc_modular_\\(bacnet\\)_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "3.5.3",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:talon_tc_modular_\\(bacnet\\):*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "productcert@siemens.com",
          "ID": "CVE-2021-27391"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions \u003e= V2.6.3), APOGEE PXC Compact (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions \u003e= V2.8), APOGEE PXC Modular (BACnet) (All versions \u003c V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions \u003e= V2.8), TALON TC Compact (BACnet) (All versions \u003c V3.5.3), TALON TC Modular (BACnet) (All versions \u003c V3.5.3). The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow. An unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-120"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf",
              "refsource": "MISC",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-944498.pdf"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2021-09-28T16:24Z",
      "publishedDate": "2021-09-14T11:15Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2021-27391 (GCVE-0-2021-27391)

Solution

Solution

Tags

Sightings

Nomenclature