Lucene search

CVE-2021-25667

🗓️ 15 Mar 2021 17:21:15Reported by siemensType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 49 Views

Vuln in RUGGEDCOM RM1224 & SCALANCE M-800, S615, SC-600, XB-200, XC-200, XF-200BA, XM400, XP-200, XR-300WG, XR500 <=V6.4,V4.1,V2.1.3,V6.2. Allows remote attacker to trigger DOS or remote code execution

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
ICS	Siemens SCALANCE and RUGGEDCOM Devices (Update A)	9 Mar 202100:00	–	ics
Tenable Nessus	Siemens SCALANCE and RUGGEDCOM Devices Stack-Based Buffer Overflow (CVE-2021-25667)	5 Apr 202300:00	–	nessus
CNVD	Siemens SCALANCE and RuggedCmd Device Stack Overflow Vulnerability	9 Mar 202100:00	–	cnvd
Prion	Stack overflow	15 Mar 202117:15	–	prion
Cvelist	CVE-2021-25667	15 Mar 202117:03	–	cvelist
NVD	CVE-2021-25667	15 Mar 202117:15	–	nvd
ThreatPost	How the NAME:WRECK Bugs Impact Consumers, Businesses	13 Apr 202121:03	–	threatpost

Nvd

Node

siemens ruggedcom_rm1224_firmwareRange4.3–6.4

AND

siemens ruggedcom_rm1224Match-

Node

siemens scalance_m-800_firmwareRange4.3–6.4

AND

siemens scalance_m-800Match-

Node

siemens scalance_s615_firmwareRange4.3–6.4

AND

siemens scalance_s615Match-

Node

siemens scalance_x300wg_firmwareRange<4.1

AND

siemens scalance_x300wgMatch-

Node

siemens scalance_xm400_firmwareRange<6.2

AND

siemens scalance_xm400Match-

Node

siemens scalance_xr500_firmwareRange<6.2

AND

siemens scalance_xr500Match-

Node

siemens scalance_sc622-2c_firmwareRange≤2.0

siemens scalance_sc622-2c_firmwareRange2.1–2.1.3

AND

siemens scalance_sc622-2cMatch-

Node

siemens scalance_sc632-2c_firmwareRange≤2.0

siemens scalance_sc632-2c_firmwareRange2.1–2.1.3

AND

siemens scalance_sc632-2cMatch-

Node

siemens scalance_sc636-2c_firmwareRange≤2.0

siemens scalance_sc636-2c_firmwareRange2.1–2.1.3

AND

siemens scalance_sc636-2cMatch-

Node

siemens scalance_sc642-2c_firmwareRange≤2.0

siemens scalance_sc642-2c_firmwareRange2.1–2.1.3

AND

siemens scalance_sc642-2cMatch-

Node

siemens scalance_sc646-2c_firmwareRange≤2.0

siemens scalance_sc646-2c_firmwareRange2.1–2.1.3

AND

siemens scalance_sc646-2cMatch-

Node

siemens scalance_xb-200_firmwareRange<4.1

AND

siemens scalance_xb-200Match-

Node

siemens scalance_xc-200_firmwareRange<4.1

AND

siemens scalance_xc-200Match-

Node

siemens scalance_xf-200ba_firmwareRange<4.1

AND

siemens scalance_xf-200baMatch-

Node

siemens scalance_xp-200_firmwareRange<4.1

AND

siemens scalance_xp-200Match-

[
  {
    "product": "RUGGEDCOM RM1224",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions >= V4.3 and < V6.4"
      }
    ]
  },
  {
    "product": "SCALANCE M-800",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions >= V4.3 and < V6.4"
      }
    ]
  },
  {
    "product": "SCALANCE S615",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions >= V4.3 and < V6.4"
      }
    ]
  },
  {
    "product": "SCALANCE SC-600 Family",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions >= V2.0 and < V2.1.3"
      }
    ]
  },
  {
    "product": "SCALANCE XB-200",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V4.1"
      }
    ]
  },
  {
    "product": "SCALANCE XC-200",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V4.1"
      }
    ]
  },
  {
    "product": "SCALANCE XF-200BA",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V4.1"
      }
    ]
  },
  {
    "product": "SCALANCE XM400",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V6.2"
      }
    ]
  },
  {
    "product": "SCALANCE XP-200",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V4.1"
      }
    ]
  },
  {
    "product": "SCALANCE XR-300WG",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V4.1"
      }
    ]
  },
  {
    "product": "SCALANCE XR500",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V6.2"
      }
    ]
  }
]

Source	Link
us-cert	www.us-cert.cisa.gov/ics/advisories/icsa-21-068-03
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-979775.pdf

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Mar 2021 17:15Current

8.8High risk

Vulners AI Score8.8

CVSS25.8

CVSS38.8

EPSS0.00907