CVE-2021-31889
CVE-2021-31889 is an integer underflow in the Nucleus NET TCP/IP stack used by several Siemens products (APOGEE MBC/MEC, PLUSCONTROL, Capital VSTAR, SIMOTICS CONNECT 400, etc.). The flaw arises from malformed TCP packets with a corrupted SACK option, enabling information leaks and denial-of-servi...