CVE-2021-31345

🗓️ 09 Nov 2021 11:31:52Reported by siemensType

CVE-2021-31345: Unchecked UDP payload length, causing Information Leak and DoS

Reporter	Title	Published	Views	Family All 18
Android Security Bulletins	Android Security Bulletin—January 2022Stay organized with collectionsSave and categorize content based on your preferences.	4 Jan 202200:00	–	androidsecurity
Circl	CVE-2021-31345	9 Nov 202114:30	–	circl
CNNVD	Siemens Nucleus 安全漏洞	9 Nov 202100:00	–	cnnvd
CNVD	Incorrect Input Validation Vulnerability in Multiple Siemens Products	11 Nov 202100:00	–	cnvd
Cvelist	CVE-2021-31345	9 Nov 202111:31	–	cvelist
EUVD	EUVD-2021-18255	7 Oct 202500:30	–	euvd
ICS	Siemens Nucleus RTOS TCP/IP Stack	9 Nov 202100:00	–	ics
ICS	Siemens Nucleus RTOS-based APOGEE and TALON Products (Update C)	9 Nov 202100:00	–	ics
ICS	Siemens Capital VSTAR	14 Dec 202100:00	–	ics
ICS	Siemens Energy PLUSCONTROL	11 Jan 202200:00	–	ics

NVD

Node

siemens capital_vstar

siemens nucleus_net

siemens nucleus_readystart_v3Range<2014.12

siemens nucleus_source_code

Node

siemens apogee_modular_building_controller_firmware

AND

siemens apogee_modular_building_controllerMatch-

Node

siemens apogee_modular_equiment_controller_firmware

AND

siemens apogee_modular_equiment_controllerMatch-

Node

siemens apogee_pxc_compact_firmware

AND

siemens apogee_pxc_compactMatch-

Node

siemens apogee_pxc_modular_firmware

AND

siemens apogee_pxc_modularMatch-

Node

siemens talon_tc_compact_firmware

AND

siemens talon_tc_compactMatch-

Node

siemens talon_tc_modular_firmware

AND

siemens talon_tc_modularMatch-

Node

siemens apogee_modular_building_controller_firmware

AND

siemens apogee_modular_building_controllerMatch-

[
  {
    "vendor": "Siemens",
    "product": "Capital Embedded AR Classic 431-422",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "*",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "Capital Embedded AR Classic R20-11",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V2303",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "PLUSCONTROL 1st Gen",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-845392.pdf
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-620288.html
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-620288.pdf
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-044112.html
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-845392.html
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-044112.pdf
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-114589.pdf
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-114589.html

11 Mar 2025 09:47Current

8.2High risk

Vulners AI Score8.2

CVSS 26.4

CVSS 3.17.5 - 9.1

EPSS0.01246

CWE-1284