CVE-2021-31895

CWE-120 — Classic Buffer Overflow CWE-787 — Out-of-bounds Write3 documents3 sources

Severity

9.8CRITICAL

EPSS

1.2%

top 21.40%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

121

Siemens Ruggedcom Rmc8388 V5.x Siemens Ruggedcom Rs1600 Siemens Ruggedcom Rs1600f +118 more

Timeline

PublishedJul 13

Latest updateMay 24

Description

A vulnerability has been identified in RUGGEDCOM i800 (All versions < V4.3.7), RUGGEDCOM i801 (All versions < V4.3.7), RUGGEDCOM i802 (All versions < V4.3.7), RUGGEDCOM i803 (All versions < V4.3.7), RUGGEDCOM M2100 (All versions < V4.3.7), RUGGEDCOM M2200 (All versions < V4.3.7), RUGGEDCOM M969 (All versions < V4.3.7), RUGGEDCOM RMC30 (All versions < V4.3.7), RUGGEDCOM RMC8388 V4.X (All versions < V4.3.7), RUGGEDCOM RMC8388 V5.X (All versions < V5.5.4), RUGGEDCOM RP110 (All versions < V4.3.7), R…

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.2 | Impact: 5.9

Affected Packages121 packages

▶NVDsiemens/ruggedcom_ros_rs900gp< 4.3.7

▶CVEListV5siemens/ruggedcom_rs900gpAll versions < V4.3.7

▶NVDsiemens/ruggedcom_ros_rs900g5.0.0 — 5.5.4+1

▶CVEListV5siemens/ruggedcom_rs900gAll versions < V4.3.7

▶CVEListV5siemens/ruggedcom_rs900g_(32m)_v4.xAll versions < V4.3.7

🔴Vulnerability Details

GHSA

GHSA-29cc-vcq3-44cf: A vulnerability has been identified in RUGGEDCOM ROS M2100 (All versions < V4↗2022-05-24

▶

CVEList

CVE-2021-31895: A vulnerability has been identified in RUGGEDCOM i800 (All versions < V4↗2021-07-13

▶