8.8

CVE-2021-25667

A vulnerability has been identified in RUGGEDCOM RM1224 (All versions >= V4.3 and < V6.4), SCALANCE M-800 (All versions >= V4.3 and < V6.4), SCALANCE S615 (All versions >= V4.3 and < V6.4), SCALANCE SC-600 Family (All versions >= V2.0 and < V2.1.3), SCALANCE XB-200 (All versions < V4.1), SCALANCE XC-200 (All versions < V4.1), SCALANCE XF-200BA (All versions < V4.1), SCALANCE XM400 (All versions < V6.2), SCALANCE XP-200 (All versions < V4.1), SCALANCE XR-300WG (All versions < V4.1), SCALANCE XR500 (All versions < V6.2). Affected devices contain a stack-based buffer overflow vulnerability in the handling of STP BPDU frames that could allow a remote attacker to trigger a denial-of-service condition or potentially remote code execution. Successful exploitation requires the passive listening feature of the device to be active.

Data is provided by the National Vulnerability Database (NVD)
SiemensRuggedcom Rm1224 Firmware Version >= 4.3 < 6.4
   SiemensRuggedcom Rm1224 Version-
SiemensScalance M-800 Firmware Version >= 4.3 < 6.4
   SiemensScalance M-800 Version-
SiemensScalance S615 Firmware Version >= 4.3 < 6.4
   SiemensScalance S615 Version-
SiemensScalance X300wg Firmware Version < 4.1
   SiemensScalance X300wg Version-
SiemensScalance Xm400 Firmware Version < 6.2
   SiemensScalance Xm400 Version-
SiemensScalance Xr500 Firmware Version < 6.2
   SiemensScalance Xr500 Version-
SiemensScalance Sc622-2c Firmware Version <= 2.0
   SiemensScalance Sc622-2c Version-
SiemensScalance Sc622-2c Firmware Version >= 2.1 < 2.1.3
   SiemensScalance Sc622-2c Version-
SiemensScalance Sc632-2c Firmware Version <= 2.0
   SiemensScalance Sc632-2c Version-
SiemensScalance Sc632-2c Firmware Version >= 2.1 < 2.1.3
   SiemensScalance Sc632-2c Version-
SiemensScalance Sc636-2c Firmware Version <= 2.0
   SiemensScalance Sc636-2c Version-
SiemensScalance Sc636-2c Firmware Version >= 2.1 < 2.1.3
   SiemensScalance Sc636-2c Version-
SiemensScalance Sc642-2c Firmware Version <= 2.0
   SiemensScalance Sc642-2c Version-
SiemensScalance Sc642-2c Firmware Version >= 2.1 < 2.1.3
   SiemensScalance Sc642-2c Version-
SiemensScalance Sc646-2c Firmware Version <= 2.0
   SiemensScalance Sc646-2c Version-
SiemensScalance Sc646-2c Firmware Version >= 2.1 < 2.1.3
   SiemensScalance Sc646-2c Version-
SiemensScalance Xb-200 Firmware Version < 4.1
   SiemensScalance Xb-200 Version-
SiemensScalance Xc-200 Firmware Version < 4.1
   SiemensScalance Xc-200 Version-
SiemensScalance Xf-200ba Firmware Version < 4.1
   SiemensScalance Xf-200ba Version-
SiemensScalance Xp-200 Firmware Version < 4.1
   SiemensScalance Xp-200 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.91% 0.736
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 8.8 2.8 5.9
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 5.8 6.5 6.4
AV:A/AC:L/Au:N/C:P/I:P/A:P
CWE-121 Stack-based Buffer Overflow

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://us-cert.cisa.gov/ics/advisories/icsa-21-068-03
Patch
Third Party Advisory
US Government Resource