CVE-2021-31340

A vulnerability has been identified in SIMATIC RF166C (All versions > V1.1 and < V1.3.2), SIMATIC RF185C (All versions > V1.1 and < V1.3.2), SIMATIC RF186C (All versions > V1.1 and < V1.3.2), SIMATIC RF186CI (All versions > V1.1 and < V1.3.2), SIMATIC RF188C (All versions > V1.1 and < V1.3.2), SIMATIC RF188CI (All versions > V1.1 and < V1.3.2), SIMATIC RF360R (All versions < V2.0), SIMATIC Reader RF610R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF610R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF610R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF615R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF615R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF615R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF650R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF650R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF650R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF650R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF680R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF680R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF680R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF680R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF685R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF685R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF685R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF685R FCC (All versions > V3.0 < V4.0). Affected devices do not properly handle large numbers of incoming connections. An attacker may leverage this to cause a Denial-of-Service situation.

CVSS v3 7.5 HIGH
CVSS v2.0 5.0 MEDIUM

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-787292.pdf	Mitigation Patch Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:siemens:simatic_rf166c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf166c:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:siemens:simatic_rf185c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf185c:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:siemens:simatic_rf186c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf186c:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:siemens:simatic_rf186ci_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf186ci:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:siemens:simatic_rf188c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf188c:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:siemens:simatic_rf188ci_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf188ci:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:siemens:simatic_rf360r_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf360r:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf610r_cmiit_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf610r_cmiit:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf610r_etsi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf610r_etsi:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf610r_fcc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf610r_fcc:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf615r_cmiit_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf615r_cmiit:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf615r_etsi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf615r_etsi:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf615r_fcc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf615r_fcc:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf650r_cmiit_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf650r_cmiit:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf650r_etsi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf650r_etsi:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf650r_fcc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf650r_fcc:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf650r_arib_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf650r_arib:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf680r_cmiit_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf680r_cmiit:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf680r_etsi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf680r_etsi:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf680r_fcc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf680r_fcc:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf680r_arib_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf680r_arib:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf685r_cmiit_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf685r_cmiit:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf685r_etsi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf685r_etsi:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf685r_fcc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf685r_fcc:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:siemens:simatic_reader_rf685r_arib_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_reader_rf685r_arib:-:*:*:*:*:*:*:*

History

06 Oct 2022, 17:28

Type	Values Removed	Values Added
CPE	cpe:2.3:o:siemens:simatic_rf360r_firmware:-:::::::*	cpe:2.3:o:siemens:simatic_rf360r_firmware::::::::

20 May 2022, 13:15

Type	Values Removed	Values Added
Summary	A vulnerability has been identified in SIMATIC RF166C (All versions > V1.1 and < V1.3.2), SIMATIC RF185C (All versions > V1.1 and < V1.3.2), SIMATIC RF186C (All versions > V1.1 and < V1.3.2), SIMATIC RF186CI (All versions > V1.1 and < V1.3.2), SIMATIC RF188C (All versions > V1.1 and < V1.3.2), SIMATIC RF188CI (All versions > V1.1 and < V1.3.2), SIMATIC RF360R (All versions), SIMATIC Reader RF610R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF610R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF610R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF615R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF615R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF615R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF650R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF650R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF650R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF650R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF680R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF680R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF680R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF680R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF685R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF685R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF685R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF685R FCC (All versions > V3.0 < V4.0). Affected devices do not properly handle large numbers of incoming connections. An attacker may leverage this to cause a Denial-of-Service situation.	A vulnerability has been identified in SIMATIC RF166C (All versions > V1.1 and < V1.3.2), SIMATIC RF185C (All versions > V1.1 and < V1.3.2), SIMATIC RF186C (All versions > V1.1 and < V1.3.2), SIMATIC RF186CI (All versions > V1.1 and < V1.3.2), SIMATIC RF188C (All versions > V1.1 and < V1.3.2), SIMATIC RF188CI (All versions > V1.1 and < V1.3.2), SIMATIC RF360R (All versions < V2.0), SIMATIC Reader RF610R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF610R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF610R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF615R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF615R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF615R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF650R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF650R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF650R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF650R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF680R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF680R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF680R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF680R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF685R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF685R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF685R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF685R FCC (All versions > V3.0 < V4.0). Affected devices do not properly handle large numbers of incoming connections. An attacker may leverage this to cause a Denial-of-Service situation.

13 May 2022, 17:29

Type	Values Removed	Values Added
CPE	cpe:2.3:h:siemens:simatic_rf680r:-:::::::* cpe:2.3:o:siemens:simatic_rf685r_firmware:::::::: cpe:2.3:h:siemens:simatic_rf615r:-:::::::* cpe:2.3:o:siemens:simatic_rf680r_firmware:::::::: cpe:2.3:h:siemens:simatic_rf685r:-:::::::* cpe:2.3:o:siemens:simatic_rf615r_firmware::::::::	cpe:2.3:o:siemens:simatic_reader_rf680r_etsi_firmware:::::::: cpe:2.3:h:siemens:simatic_reader_rf615r_etsi:-:::::::* cpe:2.3:o:siemens:simatic_reader_rf615r_fcc_firmware:::::::: cpe:2.3:h:siemens:simatic_reader_rf685r_arib:-:::::::* cpe:2.3:o:siemens:simatic_reader_rf680r_arib_firmware:::::::: cpe:2.3:o:siemens:simatic_reader_rf650r_cmiit_firmware:::::::: cpe:2.3:o:siemens:simatic_reader_rf680r_fcc_firmware:::::::: cpe:2.3:h:siemens:simatic_reader_rf680r_cmiit:-:::::::* cpe:2.3:o:siemens:simatic_reader_rf685r_etsi_firmware:::::::: cpe:2.3:o:siemens:simatic_reader_rf685r_cmiit_firmware:::::::: cpe:2.3:h:siemens:simatic_reader_rf685r_etsi:-:::::::* cpe:2.3:o:siemens:simatic_reader_rf685r_arib_firmware:::::::: cpe:2.3:h:siemens:simatic_reader_rf615r_fcc:-:::::::* cpe:2.3:h:siemens:simatic_reader_rf685r_cmiit:-:::::::* cpe:2.3:h:siemens:simatic_reader_rf615r_cmiit:-:::::::* cpe:2.3:h:siemens:simatic_reader_rf680r_fcc:-:::::::* cpe:2.3:o:siemens:simatic_reader_rf615r_etsi_firmware:::::::: cpe:2.3:o:siemens:simatic_reader_rf610r_etsi_firmware:::::::: cpe:2.3:h:siemens:simatic_reader_rf610r_cmiit:-:::::::* cpe:2.3:o:siemens:simatic_reader_rf610r_cmiit_firmware:::::::: cpe:2.3:o:siemens:simatic_reader_rf615r_cmiit_firmware:::::::: cpe:2.3:h:siemens:simatic_reader_rf650r_arib:-:::::::* cpe:2.3:h:siemens:simatic_reader_rf680r_arib:-:::::::* cpe:2.3:h:siemens:simatic_reader_rf650r_cmiit:-:::::::* cpe:2.3:o:siemens:simatic_reader_rf610r_fcc_firmware:::::::: cpe:2.3:h:siemens:simatic_reader_rf650r_etsi:-:::::::* cpe:2.3:h:siemens:simatic_reader_rf650r_fcc:-:::::::* cpe:2.3:h:siemens:simatic_reader_rf680r_etsi:-:::::::* cpe:2.3:o:siemens:simatic_reader_rf650r_etsi_firmware:::::::: cpe:2.3:o:siemens:simatic_reader_rf685r_fcc_firmware:::::::: cpe:2.3:h:siemens:simatic_reader_rf685r_fcc:-:::::::* cpe:2.3:o:siemens:simatic_reader_rf650r_arib_firmware:::::::: cpe:2.3:h:siemens:simatic_reader_rf610r_etsi:-:::::::* cpe:2.3:o:siemens:simatic_reader_rf680r_cmiit_firmware:::::::: cpe:2.3:h:siemens:simatic_reader_rf610r_fcc:-:::::::* cpe:2.3:o:siemens:simatic_reader_rf650r_fcc_firmware::::::::
References	~~(MISC) https://cert-portal.siemens.com/productcert/pdf/ssa-787292.pdf - Mitigation, Vendor Advisory~~	(MISC) https://cert-portal.siemens.com/productcert/pdf/ssa-787292.pdf - Mitigation, Patch, Vendor Advisory
First Time		Siemens simatic Reader Rf680r Cmiit Siemens simatic Reader Rf685r Cmiit Siemens simatic Reader Rf610r Fcc Firmware Siemens simatic Reader Rf685r Arib Siemens simatic Reader Rf650r Fcc Firmware Siemens simatic Reader Rf610r Etsi Firmware Siemens simatic Reader Rf680r Etsi Firmware Siemens simatic Reader Rf680r Fcc Siemens simatic Reader Rf680r Arib Siemens simatic Reader Rf685r Fcc Siemens simatic Reader Rf650r Arib Firmware Siemens simatic Reader Rf650r Arib Siemens simatic Reader Rf680r Arib Firmware Siemens simatic Reader Rf615r Etsi Firmware Siemens simatic Reader Rf615r Fcc Siemens simatic Reader Rf685r Fcc Firmware Siemens simatic Reader Rf615r Cmiit Siemens simatic Reader Rf610r Cmiit Siemens simatic Reader Rf650r Etsi Siemens simatic Reader Rf650r Cmiit Siemens simatic Reader Rf685r Cmiit Firmware Siemens simatic Reader Rf680r Etsi Siemens simatic Reader Rf650r Etsi Firmware Siemens simatic Reader Rf650r Cmiit Firmware Siemens simatic Reader Rf650r Fcc Siemens simatic Reader Rf615r Fcc Firmware Siemens simatic Reader Rf610r Etsi Siemens simatic Reader Rf680r Cmiit Firmware Siemens simatic Reader Rf685r Etsi Siemens simatic Reader Rf685r Arib Firmware Siemens simatic Reader Rf610r Cmiit Firmware Siemens simatic Reader Rf685r Etsi Firmware Siemens simatic Reader Rf615r Cmiit Firmware Siemens simatic Reader Rf615r Etsi Siemens simatic Reader Rf610r Fcc Siemens simatic Reader Rf680r Fcc Firmware

12 Apr 2022, 09:15

Type	Values Removed	Values Added
Summary	A vulnerability has been identified in SIMATIC RF166C (All versions > V1.1 and < V1.3.2), SIMATIC RF185C (All versions > V1.1 and < V1.3.2), SIMATIC RF186C (All versions > V1.1 and < V1.3.2), SIMATIC RF186CI (All versions > V1.1 and < V1.3.2), SIMATIC RF188C (All versions > V1.1 and < V1.3.2), SIMATIC RF188CI (All versions > V1.1 and < V1.3.2), SIMATIC RF360R (All versions), SIMATIC RF615R (All versions > V3.0), SIMATIC RF680R (All versions > V3.0), SIMATIC RF685R (All versions > V3.0). Affected devices do not properly handle large numbers of incoming connections. An attacker may leverage this to cause a Denial-of-Service situation.	A vulnerability has been identified in SIMATIC RF166C (All versions > V1.1 and < V1.3.2), SIMATIC RF185C (All versions > V1.1 and < V1.3.2), SIMATIC RF186C (All versions > V1.1 and < V1.3.2), SIMATIC RF186CI (All versions > V1.1 and < V1.3.2), SIMATIC RF188C (All versions > V1.1 and < V1.3.2), SIMATIC RF188CI (All versions > V1.1 and < V1.3.2), SIMATIC RF360R (All versions), SIMATIC Reader RF610R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF610R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF610R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF615R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF615R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF615R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF650R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF650R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF650R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF650R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF680R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF680R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF680R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF680R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF685R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF685R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF685R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF685R FCC (All versions > V3.0 < V4.0). Affected devices do not properly handle large numbers of incoming connections. An attacker may leverage this to cause a Denial-of-Service situation.

22 Jun 2021, 17:05

Type	Values Removed	Values Added
CPE		cpe:2.3:o:siemens:simatic_rf360r_firmware:-:::::::* cpe:2.3:h:siemens:simatic_rf166c:-:::::::* cpe:2.3:h:siemens:simatic_rf188ci:-:::::::* cpe:2.3:o:siemens:simatic_rf615r_firmware:::::::: cpe:2.3:o:siemens:simatic_rf188c_firmware:::::::: cpe:2.3:h:siemens:simatic_rf615r:-:::::::* cpe:2.3:h:siemens:simatic_rf186ci:-:::::::* cpe:2.3:o:siemens:simatic_rf185c_firmware:::::::: cpe:2.3:h:siemens:simatic_rf188c:-:::::::* cpe:2.3:o:siemens:simatic_rf680r_firmware:::::::: cpe:2.3:h:siemens:simatic_rf680r:-:::::::* cpe:2.3:h:siemens:simatic_rf185c:-:::::::* cpe:2.3:h:siemens:simatic_rf360r:-:::::::* cpe:2.3:o:siemens:simatic_rf186c_firmware:::::::: cpe:2.3:o:siemens:simatic_rf685r_firmware:::::::: cpe:2.3:h:siemens:simatic_rf186c:-:::::::* cpe:2.3:o:siemens:simatic_rf166c_firmware:::::::: cpe:2.3:h:siemens:simatic_rf685r:-:::::::* cpe:2.3:o:siemens:simatic_rf188ci_firmware:::::::: cpe:2.3:o:siemens:simatic_rf186ci_firmware::::::::
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 5.0 v3 : 7.5
References	~~(MISC) https://cert-portal.siemens.com/productcert/pdf/ssa-787292.pdf -~~	(MISC) https://cert-portal.siemens.com/productcert/pdf/ssa-787292.pdf - Mitigation, Vendor Advisory
CWE		CWE-400

08 Jun 2021, 21:30

Type	Values Removed	Values Added
New CVE

Information

Published : 2021-06-08 20:15

Updated : 2023-12-10 13:55

NVD link : CVE-2021-31340

Mitre link : CVE-2021-31340

CVE.ORG link : CVE-2021-31340

JSON object : View

Products Affected

siemens

simatic_reader_rf650r_cmiit
simatic_rf186c_firmware
simatic_reader_rf615r_etsi
simatic_reader_rf680r_cmiit
simatic_reader_rf610r_cmiit_firmware
simatic_reader_rf650r_etsi
simatic_reader_rf650r_arib
simatic_reader_rf680r_arib
simatic_rf166c
simatic_rf186ci
simatic_reader_rf615r_cmiit
simatic_reader_rf615r_fcc
simatic_reader_rf685r_fcc
simatic_rf186c
simatic_reader_rf680r_fcc_firmware
simatic_reader_rf610r_fcc_firmware
simatic_reader_rf685r_arib_firmware
simatic_reader_rf680r_arib_firmware
simatic_reader_rf615r_etsi_firmware
simatic_reader_rf650r_cmiit_firmware
simatic_reader_rf685r_etsi
simatic_rf188c_firmware
simatic_reader_rf650r_fcc_firmware
simatic_reader_rf680r_fcc
simatic_reader_rf685r_cmiit
simatic_reader_rf680r_etsi
simatic_reader_rf610r_etsi
simatic_reader_rf650r_etsi_firmware
simatic_reader_rf680r_etsi_firmware
simatic_reader_rf680r_cmiit_firmware
simatic_rf186ci_firmware
simatic_rf360r
simatic_reader_rf650r_arib_firmware
simatic_rf185c
simatic_rf360r_firmware
simatic_reader_rf685r_cmiit_firmware
simatic_reader_rf650r_fcc
simatic_reader_rf615r_cmiit_firmware
simatic_rf185c_firmware
simatic_reader_rf610r_fcc
simatic_rf188ci
simatic_reader_rf685r_arib
simatic_rf188ci_firmware
simatic_reader_rf610r_etsi_firmware
simatic_reader_rf685r_etsi_firmware
simatic_rf166c_firmware
simatic_reader_rf610r_cmiit
simatic_reader_rf685r_fcc_firmware
simatic_reader_rf615r_fcc_firmware
simatic_rf188c

CWE

CWE-400

Uncontrolled Resource Consumption

7.5 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

5.0 /10

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

JSON object

Attach tags to CVE-2021-31340

7.5^/10

5.0^/10

Attach tags to `CVE-2021-31340`