CVE-2021-31882 : A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All

A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303). The DHCP client application does not validate the length of the Domain Name Server IP option(s) (0x06) when processing DHCP ACK packets. This may lead to Denial-of-Service conditions. (FSMD-2021-0011)

Published 2021-11-09 12:15:09

Updated 2024-10-08 09:15:05

Source Siemens AG

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2021-31882

Siemens » Apogee Modular Equiment Controller Firmware
cpe:2.3:o:siemens:apogee_modular_equiment_controller_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Apogee Modular Equiment Controller » Version: N/A
Siemens » Apogee Modular Building Controller Firmware
cpe:2.3:o:siemens:apogee_modular_building_controller_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Apogee Modular Building Controller » Version: N/A
Siemens » Nucleus Net
cpe:2.3:a:siemens:nucleus_net:*:*:*:*:*:*:*:*
Matching versions
Siemens » Nucleus Source Code
cpe:2.3:a:siemens:nucleus_source_code:*:*:*:*:*:*:*:*
Matching versions
Siemens » Capital Vstar
cpe:2.3:a:siemens:capital_vstar:*:*:*:*:*:*:*:*
Matching versions
Siemens » Apogee Pxc Compact Firmware
cpe:2.3:o:siemens:apogee_pxc_compact_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Apogee Pxc Compact » Version: N/A
Siemens » Apogee Pxc Modular Firmware
cpe:2.3:o:siemens:apogee_pxc_modular_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Apogee Pxc Modular » Version: N/A
Siemens » Talon Tc Compact Firmware
cpe:2.3:o:siemens:talon_tc_compact_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Talon Tc Compact » Version: N/A
Siemens » Talon Tc Modular Firmware
cpe:2.3:o:siemens:talon_tc_modular_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Talon Tc Modular » Version: N/A
Siemens » Nucleus Readystart V3
Versions before (<) 2017.02.1
cpe:2.3:a:siemens:nucleus_readystart_v3:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2021-31882

EPSS FAQ

1.41%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 79 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2021-31882

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
6.5	MEDIUM	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	2.8	3.6	Siemens AG	2024-10-08
Attack Vector: Adjacent Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2021-31882

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Assigned by: productcert@siemens.com (Primary)

References for CVE-2021-31882

Jump to

Vulnerability Details : CVE-2021-31882

Products affected by CVE-2021-31882

Exploit prediction scoring system (EPSS) score for CVE-2021-31882

CVSS scores for CVE-2021-31882

CWE ids for CVE-2021-31882

References for CVE-2021-31882