CVE-2021-33737

A vulnerability has been identified in SIMATIC CP 343-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 ERPC (All versions), SIMATIC CP 343-1 Lean (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 Advanced (incl. SIPLUS variants) (All versions). Sending a specially crafted packet to port 102/tcp of an affected device could cause a Denial-of-Service condition. A restart is needed to restore normal operations.
References
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:siemens:simatic_cp_343-1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_cp343-1:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:siemens:simatic_cp_343-1_advanced_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_cp343-1_advanced:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:siemens:simatic_cp_343-1_erpc_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_cp_343-1_erpc:*:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:siemens:simatic_cp_343-1_lean_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_cp_343-1_lean:*:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:siemens:simatic_cp_443-1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_cp_443-1:*:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:siemens:simatic_cp_443-1_advanced_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_cp_443-1_advanced:*:*:*:*:*:*:*:*

Information

Published : 2021-09-14 04:15

Updated : 2021-09-28 08:38


NVD link : CVE-2021-33737

Mitre link : CVE-2021-33737


JSON object : View

CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Products Affected

siemens

  • simatic_cp343-1
  • simatic_cp_343-1_erpc
  • simatic_cp_343-1_lean
  • simatic_cp_343-1_firmware
  • simatic_cp_443-1_firmware
  • simatic_cp_443-1_advanced
  • simatic_cp_443-1
  • simatic_cp_343-1_advanced_firmware
  • simatic_cp_343-1_lean_firmware
  • simatic_cp343-1_advanced
  • simatic_cp_343-1_erpc_firmware
  • simatic_cp_443-1_advanced_firmware