Lucene search
China National Vulnerability DatabaseCNVD-2021-89443HistoryNov 11, 2021 - 12:00 a.m.
Out-of-bounds reading vulnerability in multiple Siemens products
2021-11-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
0.002 Low
EPSS
Percentile
53.2%
Capital VSTAR is a complete solution. the Nucleus NET module integrates a range of standards-compliant networking and communications protocols, drivers and utilities to provide full-featured networking support in any embedded device. the Nucleus RTOS is a microkernel-based real-time operating system. A security vulnerability exists in several Siemens products. The vulnerability stems from the fact that when processing DHCP OFFER messages, the DHCP client application does not validate the length of the vendor option, and an attacker could exploit the vulnerability to cause a denial of service condition.
| CPE | Name | Operator | Version |
|---|---|---|---|
| SIEMENS Nucleus ReadyStart V3< | eq | 2017.02.4 |
Related
cve
cve
CVE-2021-31881
2021-11-09 12:15:09
prion
prion
Design/Logic Flaw
2021-11-09 12:15:00
nvd
nvd
CVE-2021-31881
2021-11-09 12:15:09
cvelist
cvelist
CVE-2021-31881
2021-11-09 11:31:54
nessus
nessus
ics
ics
Siemens Capital VSTAR (Update A)
2022-11-10 12:00:00
Siemens Nucleus RTOS TCP/IP Stack
2021-11-17 12:00:00
Siemens Nucleus RTOS-based APOGEE and TALON Products (Update C)
2022-05-12 12:00:00
f5
f5
K000135330 : Multiple Nucleus TCP/IP stack vulnerabilities
2023-06-30 00:00:00