CVE-2021-37199

A vulnerability has been identified in SINUMERIK 808D (All versions), SINUMERIK 828D (All versions < V4.95). Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial-of-service in the device.

Published: Oct 12, 2021
Updated: Apr 14, 2023
CVE: CVE-2021-37199
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-787

Affected Software
References

Software	From	Fixed in
siemens / sinumerik_808d_firmware	-	-
siemens / sinumerik_828d_firmware	-	4.95

https://cert-portal.siemens.com/productcert/pdf/ssa-178380.pdf

Vulnerability Database

289,697

CVE-2021-37199