CVE-2021-31885

CWE-8053 documents3 sources

Severity

7.5HIGH

EPSS

0.4%

top 40.22%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Siemens Nucleus Readystart V3 Siemens Nucleus Readystart V4 Siemens Apogee MBC (ppc) (bacnet)+25 more

Timeline

PublishedNov 9

Latest updateMay 24

Description

A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versions = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and < V6.30.016), Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2017.02.4), Nucle…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages30 packages

▶CVEListV5siemens/apogee_pxc_compact_(bacnet)All versions < V3.5.4

▶CVEListV5siemens/apogee_pxc_modular_(bacnet)All versions < V3.5.4

▶CVEListV5siemens/apogee_mbc_(ppc)_(bacnet)All versions

▶CVEListV5siemens/apogee_mec_(ppc)_(bacnet)All versions

▶CVEListV5siemens/talon_tc_compact_(bacnet)All versions < V3.5.4

🔴Vulnerability Details

GHSA

GHSA-fc2w-gxv3-9vh5: A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACn↗2022-05-24

▶

CVEList

CVE-2021-31885: A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACn↗2021-11-09

▶