Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2021-22742
HistoryMay 26, 2021 - 8:15 p.m.

CVE-2021-22742

2021-05-2620:15:09
CWE-754
[email protected]
web.nvd.nist.gov
27
4
cve-2021-22742
triconex
model 3009 mp
vulnerability
unusual conditions
exceptional conditions
tricon v11.3.x
tcm
tristation packets
write-protect keyswitch

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

3.9 Low

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

4 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.3%

JSON

Improper Check for Unusual or Exceptional Conditions vulnerability exists in Triconex Model 3009 MP installed on Tricon V11.3.x systems that could cause module reset when TCM receives malformed TriStation packets while the write-protect keyswitch is in the program position.

Affected configurations

NVD
Node
schneider-electrictriconex_model_3009_mpMatch-
AND
schneider-electrictriconex_model_3009_mp_firmwareRange11.3.011.8.0
Node
schneider-electrictcm_4351bMatch-
AND
schneider-electrictcm_4351b_firmwareRange11.3.011.5.1
OR
schneider-electrictcm_4351b_firmwareMatch11.7.0

CNA Affected

[
  {
    "product": "Triconex Model 3009 MP installed on Tricon V11.3.x systems",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Triconex Model 3009 MP installed on Tricon V11.3.x systems"
      }
    ]
  }
]

Social References

More

Related

nvd 5
cvelist 5
prion 5
cve 4
nvd
nvd
CVE-2021-22742
2021-05-26 20:15:09
CVE-2021-22744
2021-05-26 20:15:09
CVE-2021-22747
2021-05-26 20:15:09
cvelist
cvelist
CVE-2021-22742
2021-05-26 19:20:18
CVE-2021-22746
2021-05-26 19:20:38
CVE-2021-22744
2021-05-26 19:20:28
prion
prion
Input validation
2021-05-26 20:15:00
Input validation
2021-05-26 20:15:00
Input validation
2021-05-26 20:15:00
cve
cve
CVE-2021-22744
2021-05-26 20:15:09
CVE-2021-22745
2021-05-26 20:15:09
CVE-2021-22746
2021-05-26 20:15:09

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

3.9 Low

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

4 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.3%

JSON
Related for CVE-2021-22742
nvd5cvelist5prion5cve4