Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2021-29998
HistoryApr 13, 2021 - 5:15 p.m.

CVE-2021-29998

2021-04-1317:15:12
CWE-787
[email protected]
web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.006 Low

EPSS

Percentile

78.1%

JSON

An issue was discovered in Wind River VxWorks before 6.5. There is a possible heap overflow in dhcp client.

Affected configurations

NVD
Node
windrivervxworksRange<6.5
Node
siemensruggedcom_win_subscriber_stationMatch-
AND
siemensruggedcom_win_subscriber_station_firmware
Node
siemensscalance_x200-4_p_irtMatch-
AND
siemensscalance_x200-4_p_irt_firmware
Node
siemensscalance_x201-3p_irtMatch-
AND
siemensscalance_x201-3p_irt_firmware
Node
siemensscalance_x201-3p_irt_proMatch-
AND
siemensscalance_x201-3p_irt_pro_firmware
Node
siemensscalance_x202-2_irtMatch-
AND
siemensscalance_x202-2_irt_firmware
Node
siemensscalance_x202-2p_irtMatch-
AND
siemensscalance_x202-2p_irt_firmware
Node
siemensscalance_x202-2p_irt_proMatch-
AND
siemensscalance_x202-2p_irt_pro_firmware
Node
siemensscalance_x204_irtMatch-
AND
siemensscalance_x204_irt_firmware
Node
siemensscalance_x204_irt_pro_firmware
AND
siemensscalance_x204_irt_proMatch-
Node
siemensscalance_x204-2_firmware
AND
siemensscalance_x204-2Match-
Node
siemensscalance_x204-2fm_firmware
AND
siemensscalance_x204-2fmMatch-
Node
siemensscalance_x204-2ld_firmware
AND
siemensscalance_x204-2ldMatch-
Node
siemensscalance_x204-2ld_ts_firmware
AND
siemensscalance_x204-2ld_tsMatch-
Node
siemensscalance_x204-2ts_firmware
AND
siemensscalance_x204-2tsMatch-
Node
siemensscalance_x206-1_firmware
AND
siemensscalance_x206-1Match-
Node
siemensscalance_x206-1ld_firmware
AND
siemensscalance_x206-1ldMatch-
Node
siemensscalance_x208_firmware
AND
siemensscalance_x208Match-
Node
siemensscalance_x208_pro_firmware
AND
siemensscalance_x208_proMatch-
Node
siemensscalance_x212-2_firmware
AND
siemensscalance_x212-2Match-
Node
siemensscalance_x212-2ld_firmware
AND
siemensscalance_x212-2ldMatch-
Node
siemensscalance_x216_firmware
AND
siemensscalance_x216Match-
Node
siemensscalance_x224_firmware
AND
siemensscalance_x224Match-
Node
siemensscalance_x300_firmware
AND
siemensscalance_x300Match-
Node
siemensscalance_x408_firmware
AND
siemensscalance_x408Match-
Node
siemensscalance_xf201-3p_irt_firmware
AND
siemensscalance_xf201-3p_irtMatch-
Node
siemensscalance_xf202-2p_irt_firmware
AND
siemensscalance_xf202-2p_irtMatch-
Node
siemensscalance_xf204_firmware
AND
siemensscalance_xf204Match-
Node
siemensscalance_xf204_irt_firmware
AND
siemensscalance_xf204_irtMatch-
Node
siemensscalance_xf204-2_firmware
AND
siemensscalance_xf204-2Match-
Node
siemensscalance_xf204-2ba_irt_firmware
AND
siemensscalance_xf204-2ba_irtMatch-
Node
siemensscalance_xf206-1_firmware
AND
siemensscalance_xf206-1Match-
Node
siemensscalance_xf208_firmware
AND
siemensscalance_xf208Match-
Node
siemenssimatic_rf_181_eip_firmware
AND
siemenssimatic_rf_181_eipMatch-
Node
siemenssimatic_rf_182c_firmware
AND
siemenssimatic_rf_182cMatch-
Node
siemenssinamics_perfect_harmony_gh180_firmwareRange20152022
AND
siemenssinamics_perfect_harmony_gh180Match-

Related

nessus 2
ics 2
prion 1
cve 1
cvelist 1
nessus
nessus
Siemens VxWorks-based Industrial Products Heap Overflow (CVE-2021-29998)
2023-01-25 00:00:00
Mitsubishi MELSEC-Q Series C Controller Module Denial of Service and Malicious Code Execution (CVE-2021-29998)
2023-12-18 00:00:00
ics
ics
Siemens VxWorks-based Industrial Products (Update C)
2022-07-14 12:00:00
Mitsubishi Electric MELSEC-Q Series C Controller Module
2022-04-12 12:00:00
prion
prion
Heap overflow
2021-04-13 17:15:00
cve
cve
CVE-2021-29998
2021-04-13 17:15:12
cvelist
cvelist
CVE-2021-29998
2021-04-13 16:16:51

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.006 Low

EPSS

Percentile

78.1%

JSON
Related for NVD:CVE-2021-29998
nessus2ics2prion1cve1cvelist1