Vulnerability Details : CVE-2021-31895
A vulnerability has been identified in RUGGEDCOM ROS M2100 (All versions < V4.3.7), RUGGEDCOM ROS M2200 (All versions < V4.3.7), RUGGEDCOM ROS M969 (All versions < V4.3.7), RUGGEDCOM ROS RMC (All versions < V4.3.7), RUGGEDCOM ROS RMC20 (All versions < V4.3.7), RUGGEDCOM ROS RMC30 (All versions < V4.3.7), RUGGEDCOM ROS RMC40 (All versions < V4.3.7), RUGGEDCOM ROS RMC41 (All versions < V4.3.7), RUGGEDCOM ROS RMC8388 V4.X (All versions < V4.3.7), RUGGEDCOM ROS RMC8388 V5.X (All versions < V5.5.4), RUGGEDCOM ROS RP110 (All versions < V4.3.7), RUGGEDCOM ROS RS400 (All versions < V4.3.7), RUGGEDCOM ROS RS401 (All versions < V4.3.7), RUGGEDCOM ROS RS416 (All versions < V4.3.7), RUGGEDCOM ROS RS416v2 V4.X (All versions < V4.3.7), RUGGEDCOM ROS RS416v2 V5.X (All versions < 5.5.4), RUGGEDCOM ROS RS8000 (All versions < V4.3.7), RUGGEDCOM ROS RS8000A (All versions < V4.3.7), RUGGEDCOM ROS RS8000H (All versions < V4.3.7), RUGGEDCOM ROS RS8000T (All versions < V4.3.7), RUGGEDCOM ROS RS900 (32M) V4.X (All versions < V4.3.7), RUGGEDCOM ROS RS900 (32M) V5.X (All versions < V5.5.4), RUGGEDCOM ROS RS900G (All versions < V4.3.7), RUGGEDCOM ROS RS900G (32M) V4.X (All versions < V4.3.7), RUGGEDCOM ROS RS900G (32M) V5.X (All versions < V5.5.4), RUGGEDCOM ROS RS900GP (All versions < V4.3.7), RUGGEDCOM ROS RS900L (All versions < V4.3.7), RUGGEDCOM ROS RS900W (All versions < V4.3.7), RUGGEDCOM ROS RS910 (All versions < V4.3.7), RUGGEDCOM ROS RS910L (All versions < V4.3.7), RUGGEDCOM ROS RS910W (All versions < V4.3.7), RUGGEDCOM ROS RS920L (All versions < V4.3.7), RUGGEDCOM ROS RS920W (All versions < V4.3.7), RUGGEDCOM ROS RS930L (All versions < V4.3.7), RUGGEDCOM ROS RS930W (All versions < V4.3.7), RUGGEDCOM ROS RS940G (All versions < V4.3.7), RUGGEDCOM ROS RS969 (All versions < V4.3.7), RUGGEDCOM ROS RSG2100 (32M) V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG2100 (32M) V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG2100 V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG2100P (All versions < V4.3.7), RUGGEDCOM ROS RSG2100P (32M) V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG2100P (32M) V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG2200 (All versions < V4.3.7), RUGGEDCOM ROS RSG2288 V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG2288 V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG2300 V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG2300 V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG2300P V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG2300P V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG2488 V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG2488 V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG900 V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG900 V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG900C (All versions < V5.5.4), RUGGEDCOM ROS RSG900G V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG900G V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG900R (All versions < V5.5.4), RUGGEDCOM ROS RSG920P V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG920P V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSL910 (All versions < V5.5.4), RUGGEDCOM ROS RST2228 (All versions < V5.5.4), RUGGEDCOM ROS RST916C (All versions < V5.5.4), RUGGEDCOM ROS RST916P (All versions < V5.5.4), RUGGEDCOM ROS i800 (All versions < V4.3.7), RUGGEDCOM ROS i801 (All versions < V4.3.7), RUGGEDCOM ROS i802 (All versions < V4.3.7), RUGGEDCOM ROS i803 (All versions < V4.3.7). The DHCP client in affected devices fails to properly sanitize incoming DHCP packets. This could allow an unauthenticated remote attacker to cause memory to be overwritten, potentially allowing remote code execution.
Vulnerability category: OverflowMemory CorruptionExecute code
Products affected by CVE-2021-31895
- cpe:2.3:o:siemens:ruggedcom_ros_i800:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_i801:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_i802:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_i803:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_m969:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_m2100:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_m2200:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rmc:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rmc20:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rmc30:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rmc40:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rmc41:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rmc8388:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rmc8388:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rp110:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs400:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs401:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs416:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs416v2:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs416v2:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs900:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs900:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs900g:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs900g:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs900gp:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs900l:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs900w:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs910:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs910l:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs910w:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs920l:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs920w:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs930l:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs930w:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs940g:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs969:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs8000:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs8000a:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs8000h:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rs8000t:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg900:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg900:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg900c:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg900g:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg900g:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg900r:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg920p:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg920p:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg2100:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg2100:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg2100p:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg2100p:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg2200:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg2288:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg2288:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg2300:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg2300:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg2300p:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg2300p:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg2488:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsg2488:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rsl910:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rst916c:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rst916p:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:ruggedcom_ros_rst2228:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2021-31895
0.56%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 78 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2021-31895
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST | |
9.8
|
CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
3.9
|
5.9
|
NIST |
CWE ids for CVE-2021-31895
-
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.Assigned by: productcert@siemens.com (Secondary)
-
The product writes data past the end, or before the beginning, of the intended buffer.Assigned by: nvd@nist.gov (Primary)
References for CVE-2021-31895
-
https://cert-portal.siemens.com/productcert/pdf/ssa-373591.pdf
Vendor Advisory
Jump to