CVE-2021-31344 — Type Confusion in Siemens Capital Embedded AR Classic 431-422

CWE-843 — Type Confusion3 documents3 sources

Severity

6.9MEDIUMNVD

EPSS

0.9%

top 24.14%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Siemens Capital Embedded AR Classic 431-422 Siemens Capital Embedded AR Classic R20-11 Siemens Nucleus Readystart V3 +3 more

Timeline

PublishedNov 9

Latest updateMay 24

Description

A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), PLUSCONTROL 1st Gen (All versions), SIMOTICS CONNECT 400 (All versions < V0.5.0.0), SIMOTICS CONNECT 400 (All versions < V1.0.0.0). ICMP echo packets with fake IP options allow sending ICMP echo reply messages to arbitrary hosts on the network. (FSMD-2021-0004)

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

Affected Packages6 packages

▶CVEListV5siemens/capital_embedded_ar_classic_r20-11< V2303

▶CVEListV5siemens/capital_embedded_ar_classic_431-422< *

▶CVEListV5siemens/simotics_connect_400All versions < V0.5.0.0, All versions < V1.0.0.0+1

▶CVEListV5siemens/pluscontrol_1st_genAll versions

▶NVDsiemens/nucleus_readystart_v3< 2017.02.1

🔴Vulnerability Details

GHSA

GHSA-47j6-w2j2-7jxf: A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACn↗2022-05-24

▶

CVEList

CVE-2021-31344: A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303),↗2021-11-09

▶