VDE-2021-006
Vulnerability from csaf_pepperlfuchsse - Published: 2021-11-16 14:53 - Updated: 2025-05-14 13:00Summary
Pepperl+Fuchs: Multiple Products - Vulnerability may allow remote attackers to cause a Denial Of Service
Notes
Summary: Critical vulnerability has been discovered in the utilized component PROFINET IO Device by Hilscher Gesellschaft für Systemautomation mbH.
The impact of the vulnerability on the affected device is that it can
- no longer perform acyclic requests
- may drop all established cyclic connections may
- disappear completely from the network.
For more information see advisory by Hilscher:
https://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device
Update 20.11.2024: Products have been added
Impact: Pepperl+Fuchs analyzed and identified affected devices.
Remote attackers may cause a cause a Denial Of Service of the product.
Mitigation: An external protective measure is required.
- Minimize network exposure for affected products and ensure that they are not accessible via the Internet.
- Isolate affected products from the corporate network.
- If remote access is required, use secure methods such as virtual private networks (VPNs).
A Denial of Service vulnerability was found in Hilscher PROFINET IO Device V3 in versions prior to V3.14.0.7. This may lead to unexpected loss of cyclic communication or interruption of acyclic communication.
7.5 (High)
Mitigation
An external protective measure is required.
- Minimize network exposure for affected products and ensure that they are not accessible via the Internet.
- Isolate affected products from the corporate network.
- If remote access is required, use secure methods such as virtual private networks (VPNs).
References
Acknowledgments
CERT@VDE
certvde.com
Hilscher Gesellschaft für Systemautomation mbH
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
},
{
"organization": "Hilscher Gesellschaft f\u00fcr Systemautomation mbH",
"summary": "reporting."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "summary",
"text": "Critical vulnerability has been discovered in the utilized component PROFINET IO Device by Hilscher Gesellschaft f\u00fcr Systemautomation mbH.\n\nThe impact of the vulnerability on the affected device is that it can \n- no longer perform acyclic requests\n- may drop all established cyclic connections may\n- disappear completely from the network.\n\nFor more information see advisory by Hilscher:\n\nhttps://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device\n\nUpdate 20.11.2024: Products have been added",
"title": "Summary"
},
{
"category": "description",
"text": "Pepperl+Fuchs analyzed and identified affected devices.\nRemote attackers may cause a cause a Denial Of Service of the product.",
"title": "Impact"
},
{
"category": "description",
"text": "An external protective measure is required.\n\n- Minimize network exposure for affected products and ensure that they are not accessible via the Internet.\n- Isolate affected products from the corporate network.\n- If remote access is required, use secure methods such as virtual private networks (VPNs).",
"title": "Mitigation"
}
],
"publisher": {
"category": "vendor",
"contact_details": "cert@pepperl-fuchs.com",
"name": "Pepperl+Fuchs SE",
"namespace": "https://www.pepperl-fuchs.com"
},
"references": [
{
"category": "external",
"summary": "Pepperl+Fuchs advisory overview at CERT@VDE",
"url": "https://certvde.com/de/advisories/vendor/pepperl+fuchs/"
},
{
"category": "self",
"summary": "VDE-2021-006: Pepperl+Fuchs: Multiple Products - Vulnerability may allow remote attackers to cause a Denial Of Service - HTML",
"url": "https://certvde.com/en/advisories/VDE-2021-006"
},
{
"category": "self",
"summary": "VDE-2021-006: Pepperl+Fuchs: Multiple Products - Vulnerability may allow remote attackers to cause a Denial Of Service - CSAF",
"url": "https://pepperl-fuchs.csaf-tp.certvde.com/.well-known/csaf/white/2021/vde-2021-006.json"
}
],
"title": "Pepperl+Fuchs: Multiple Products - Vulnerability may allow remote attackers to cause a Denial Of Service",
"tracking": {
"aliases": [
"VDE-2021-006"
],
"current_release_date": "2025-05-14T13:00:15.000Z",
"generator": {
"date": "2025-03-07T11:19:26.982Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.20"
}
},
"id": "VDE-2021-006",
"initial_release_date": "2021-11-16T14:53:00.000Z",
"revision_history": [
{
"date": "2021-02-16T14:53:00.000Z",
"number": "1",
"summary": "Initial revision."
},
{
"date": "2024-11-20T09:34:00.000Z",
"number": "2",
"summary": "Products have been added"
},
{
"date": "2025-05-14T13:00:15.000Z",
"number": "3",
"summary": "Fix: added distribution"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "CS3B-LS610-OM",
"product": {
"name": "CS3B-LS610-OM",
"product_id": "CSAFPID-11001",
"product_identification_helper": {
"model_numbers": [
"312679"
]
}
}
},
{
"category": "product_name",
"name": "OHV-F230-B17",
"product": {
"name": "OHV-F230-B17",
"product_id": "CSAFPID-11002",
"product_identification_helper": {
"model_numbers": [
"289804-100000"
]
}
}
},
{
"category": "product_name",
"name": "OIT500-F113-B17-CB",
"product": {
"name": "OIT500-F113-B17-CB",
"product_id": "CSAFPID-11003",
"product_identification_helper": {
"model_numbers": [
"316742"
]
}
}
},
{
"category": "product_name",
"name": "PCV100-F200-B17-V1D",
"product": {
"name": "PCV100-F200-B17-V1D",
"product_id": "CSAFPID-11004",
"product_identification_helper": {
"model_numbers": [
"247325"
]
}
}
},
{
"category": "product_name",
"name": "PCV100-F200-B17-V1D-6011",
"product": {
"name": "PCV100-F200-B17-V1D-6011",
"product_id": "CSAFPID-11005",
"product_identification_helper": {
"model_numbers": [
"264850"
]
}
}
},
{
"category": "product_name",
"name": "PCV100-F200-B17-V1D-6011-6997",
"product": {
"name": "PCV100-F200-B17-V1D-6011-6997",
"product_id": "CSAFPID-11006",
"product_identification_helper": {
"model_numbers": [
"282529"
]
}
}
},
{
"category": "product_name",
"name": "PCV100-F200-B17-V1D-6011-8203",
"product": {
"name": "PCV100-F200-B17-V1D-6011-8203",
"product_id": "CSAFPID-11007",
"product_identification_helper": {
"model_numbers": [
"70103187"
]
}
}
},
{
"category": "product_name",
"name": "PCV50-F200-B17-V1D",
"product": {
"name": "PCV50-F200-B17-V1D",
"product_id": "CSAFPID-11008",
"product_identification_helper": {
"model_numbers": [
"259676"
]
}
}
},
{
"category": "product_name",
"name": "PCV80-F200-B17-V1D",
"product": {
"name": "PCV80-F200-B17-V1D",
"product_id": "CSAFPID-11009",
"product_identification_helper": {
"model_numbers": [
"244538"
]
}
}
},
{
"category": "product_name",
"name": "PGV100A-F200A-B28-V1D",
"product": {
"name": "PGV100A-F200A-B28-V1D",
"product_id": "CSAFPID-11010",
"product_identification_helper": {
"model_numbers": [
"303883"
]
}
}
},
{
"category": "product_name",
"name": "PGV100A-F200-B28-V1D",
"product": {
"name": "PGV100A-F200-B28-V1D",
"product_id": "CSAFPID-11011",
"product_identification_helper": {
"model_numbers": [
"303881"
]
}
}
},
{
"category": "product_name",
"name": "PGV100AQ-F200A-B28-V1D",
"product": {
"name": "PGV100AQ-F200A-B28-V1D",
"product_id": "CSAFPID-11012",
"product_identification_helper": {
"model_numbers": [
"70105189"
]
}
}
},
{
"category": "product_name",
"name": "PGV100AQ-F200-B28-V1D",
"product": {
"name": "PGV100AQ-F200-B28-V1D",
"product_id": "CSAFPID-11013",
"product_identification_helper": {
"model_numbers": [
"70105231"
]
}
}
},
{
"category": "product_name",
"name": "PGV100-F200A-B17-V1D",
"product": {
"name": "PGV100-F200A-B17-V1D",
"product_id": "CSAFPID-11014",
"product_identification_helper": {
"model_numbers": [
"285693-100000"
]
}
}
},
{
"category": "product_name",
"name": "PGV100-F200-B17-V1D-7477",
"product": {
"name": "PGV100-F200-B17-V1D-7477",
"product_id": "CSAFPID-11015",
"product_identification_helper": {
"model_numbers": [
"285693-100005"
]
}
}
},
{
"category": "product_name",
"name": "PGV150I-F200A-B17-V1D",
"product": {
"name": "PGV150I-F200A-B17-V1D",
"product_id": "CSAFPID-11016",
"product_identification_helper": {
"model_numbers": [
"285693-100001"
]
}
}
},
{
"category": "product_name",
"name": "PHA150-F200A-B17-V1D",
"product": {
"name": "PHA150-F200A-B17-V1D",
"product_id": "CSAFPID-11017",
"product_identification_helper": {
"model_numbers": [
"293772"
]
}
}
},
{
"category": "product_name",
"name": "PHA150-F200-B17-V1D",
"product": {
"name": "PHA150-F200-B17-V1D",
"product_id": "CSAFPID-11018",
"product_identification_helper": {
"model_numbers": [
"307562"
]
}
}
},
{
"category": "product_name",
"name": "PHA200-F200A-B17-T-V1D",
"product": {
"name": "PHA200-F200A-B17-T-V1D",
"product_id": "CSAFPID-11019",
"product_identification_helper": {
"model_numbers": [
"295658"
]
}
}
},
{
"category": "product_name",
"name": "PHA200-F200A-B17-V1D",
"product": {
"name": "PHA200-F200A-B17-V1D",
"product_id": "CSAFPID-11020",
"product_identification_helper": {
"model_numbers": [
"266679"
]
}
}
},
{
"category": "product_name",
"name": "PHA200-F200-B17-V1D",
"product": {
"name": "PHA200-F200-B17-V1D",
"product_id": "CSAFPID-11021",
"product_identification_helper": {
"model_numbers": [
"266680"
]
}
}
},
{
"category": "product_name",
"name": "PHA300-F200A-B17-T-V1D",
"product": {
"name": "PHA300-F200A-B17-T-V1D",
"product_id": "CSAFPID-11022",
"product_identification_helper": {
"model_numbers": [
"283557"
]
}
}
},
{
"category": "product_name",
"name": "PHA300-F200A-B17-V1D",
"product": {
"name": "PHA300-F200A-B17-V1D",
"product_id": "CSAFPID-11023",
"product_identification_helper": {
"model_numbers": [
"258403"
]
}
}
},
{
"category": "product_name",
"name": "PHA300-F200-B17-T-V1D",
"product": {
"name": "PHA300-F200-B17-T-V1D",
"product_id": "CSAFPID-11024"
}
},
{
"category": "product_name",
"name": "PHA300-F200-B17-V1D",
"product": {
"name": "PHA300-F200-B17-V1D",
"product_id": "CSAFPID-11025",
"product_identification_helper": {
"model_numbers": [
"255662"
]
}
}
},
{
"category": "product_name",
"name": "PHA400-F200A-B17-T-V1D",
"product": {
"name": "PHA400-F200A-B17-T-V1D",
"product_id": "CSAFPID-11026",
"product_identification_helper": {
"model_numbers": [
"323292"
]
}
}
},
{
"category": "product_name",
"name": "PHA400-F200A-B17-V1D",
"product": {
"name": "PHA400-F200A-B17-V1D",
"product_id": "CSAFPID-11027",
"product_identification_helper": {
"model_numbers": [
"270875"
]
}
}
},
{
"category": "product_name",
"name": "PHA400-F200-B17-V1D",
"product": {
"name": "PHA400-F200-B17-V1D",
"product_id": "CSAFPID-11028",
"product_identification_helper": {
"model_numbers": [
"257498"
]
}
}
},
{
"category": "product_name",
"name": "PHA500-F200A-B17-T-V1D",
"product": {
"name": "PHA500-F200A-B17-T-V1D",
"product_id": "CSAFPID-11029",
"product_identification_helper": {
"model_numbers": [
"323438"
]
}
}
},
{
"category": "product_name",
"name": "PHA500-F200A-B17-V1D",
"product": {
"name": "PHA500-F200A-B17-V1D",
"product_id": "CSAFPID-11030",
"product_identification_helper": {
"model_numbers": [
"292696"
]
}
}
},
{
"category": "product_name",
"name": "PHA500-F200-B17-V1D",
"product": {
"name": "PHA500-F200-B17-V1D",
"product_id": "CSAFPID-11031",
"product_identification_helper": {
"model_numbers": [
"292686"
]
}
}
},
{
"category": "product_name",
"name": "PHA600-F200A-B17-V1D",
"product": {
"name": "PHA600-F200A-B17-V1D",
"product_id": "CSAFPID-11032",
"product_identification_helper": {
"model_numbers": [
"291103"
]
}
}
},
{
"category": "product_name",
"name": "PHA600-F200-B17-V1D",
"product": {
"name": "PHA600-F200-B17-V1D",
"product_id": "CSAFPID-11033",
"product_identification_helper": {
"model_numbers": [
"292701"
]
}
}
},
{
"category": "product_name",
"name": "PHA700-F200-B17-V1D",
"product": {
"name": "PHA700-F200-B17-V1D",
"product_id": "CSAFPID-11034",
"product_identification_helper": {
"model_numbers": [
"70103352"
]
}
}
},
{
"category": "product_name",
"name": "PHA800-F200-B17-V1D",
"product": {
"name": "PHA800-F200-B17-V1D",
"product_id": "CSAFPID-11035",
"product_identification_helper": {
"model_numbers": [
"320263"
]
}
}
},
{
"category": "product_name",
"name": "PXV100A-F200-B28-V1D",
"product": {
"name": "PXV100A-F200-B28-V1D",
"product_id": "CSAFPID-11036"
}
},
{
"category": "product_name",
"name": "PXV100A-F200-B28-V1D-6011",
"product": {
"name": "PXV100A-F200-B28-V1D-6011",
"product_id": "CSAFPID-11037",
"product_identification_helper": {
"model_numbers": [
"298410"
]
}
}
},
{
"category": "product_name",
"name": "PXV100AQ-F200-B28-V1D",
"product": {
"name": "PXV100AQ-F200-B28-V1D",
"product_id": "CSAFPID-11038",
"product_identification_helper": {
"model_numbers": [
"70105248"
]
}
}
},
{
"category": "product_name",
"name": "PXV100AQ-F200-B28-V1D-6011",
"product": {
"name": "PXV100AQ-F200-B28-V1D-6011",
"product_id": "CSAFPID-11039",
"product_identification_helper": {
"model_numbers": [
"70105249"
]
}
}
},
{
"category": "product_name",
"name": "PXV100-F200-B17-V1D",
"product": {
"name": "PXV100-F200-B17-V1D",
"product_id": "CSAFPID-11040",
"product_identification_helper": {
"model_numbers": [
"293431-100003"
]
}
}
},
{
"category": "product_name",
"name": "PXV100-F200-B17-V1D-3636",
"product": {
"name": "PXV100-F200-B17-V1D-3636",
"product_id": "CSAFPID-11041",
"product_identification_helper": {
"model_numbers": [
"293431-100020"
]
}
}
},
{
"category": "product_name",
"name": "WCS3B-LS610",
"product": {
"name": "WCS3B-LS610",
"product_id": "CSAFPID-11042",
"product_identification_helper": {
"model_numbers": [
"262007"
]
}
}
},
{
"category": "product_name",
"name": "WCS3B-LS610D",
"product": {
"name": "WCS3B-LS610D",
"product_id": "CSAFPID-11043",
"product_identification_helper": {
"model_numbers": [
"280552"
]
}
}
},
{
"category": "product_name",
"name": "WCS3B-LS610DH",
"product": {
"name": "WCS3B-LS610DH",
"product_id": "CSAFPID-11044",
"product_identification_helper": {
"model_numbers": [
"280553"
]
}
}
},
{
"category": "product_name",
"name": "WCS3B-LS610DH-OM",
"product": {
"name": "WCS3B-LS610DH-OM",
"product_id": "CSAFPID-11045",
"product_identification_helper": {
"model_numbers": [
"312677"
]
}
}
},
{
"category": "product_name",
"name": "WCS3B-LS610D-OM",
"product": {
"name": "WCS3B-LS610D-OM",
"product_id": "CSAFPID-11046",
"product_identification_helper": {
"model_numbers": [
"312678"
]
}
}
},
{
"category": "product_name",
"name": "WCS3B-LS610H",
"product": {
"name": "WCS3B-LS610H",
"product_id": "CSAFPID-11047",
"product_identification_helper": {
"model_numbers": [
"280551"
]
}
}
},
{
"category": "product_name",
"name": "WCS3B-LS610H-OM",
"product": {
"name": "WCS3B-LS610H-OM",
"product_id": "CSAFPID-11048",
"product_identification_helper": {
"model_numbers": [
"312676"
]
}
}
}
],
"category": "product_family",
"name": "Hardware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=V3.0.0",
"product": {
"name": "Firmware \u003c=V3.0.0",
"product_id": "CSAFPID-21001"
}
},
{
"category": "product_version_range",
"name": "\u003c=V1.1.0",
"product": {
"name": "Firmware \u003c=V1.1.0",
"product_id": "CSAFPID-21002"
}
},
{
"category": "product_version_range",
"name": "\u003c=V1.3.4",
"product": {
"name": "Firmware \u003c=V1.3.4",
"product_id": "CSAFPID-21003"
}
},
{
"category": "product_version_range",
"name": "\u003c=V3.2.3",
"product": {
"name": "Firmware \u003c=V3.2.3",
"product_id": "CSAFPID-21004"
}
},
{
"category": "product_version_range",
"name": "\u003c=V3.2.5",
"product": {
"name": "Firmware \u003c=V3.2.5",
"product_id": "CSAFPID-21005"
}
},
{
"category": "product_version_range",
"name": "\u003c=V1.0.3",
"product": {
"name": "Firmware \u003c=V1.0.3",
"product_id": "CSAFPID-21006"
}
},
{
"category": "product_name",
"name": "\u003c=V2.1.1",
"product": {
"name": "Firmware \u003c=V2.1.1",
"product_id": "CSAFPID-21007"
}
},
{
"category": "product_name",
"name": "\u003c=V2.0.0",
"product": {
"name": "Firmware \u003c=V2.0.0",
"product_id": "CSAFPID-21008"
}
},
{
"category": "product_name",
"name": "\u003c=V3.1.5",
"product": {
"name": "Firmware \u003c=V3.1.5",
"product_id": "CSAFPID-21009"
}
},
{
"category": "product_name",
"name": "\u003c=V4.2.0",
"product": {
"name": "Firmware \u003c=V4.2.0",
"product_id": "CSAFPID-21010"
}
}
],
"category": "product_family",
"name": "Firmware"
}
],
"category": "vendor",
"name": "Pepperl+Fuchs"
}
],
"product_groups": [
{
"group_id": "CSAFGID-0001",
"product_ids": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006",
"CSAFPID-31007",
"CSAFPID-31008",
"CSAFPID-31009",
"CSAFPID-31010",
"CSAFPID-31011",
"CSAFPID-31012",
"CSAFPID-31013",
"CSAFPID-31014",
"CSAFPID-31015",
"CSAFPID-31016",
"CSAFPID-31017",
"CSAFPID-31018",
"CSAFPID-31019",
"CSAFPID-31020",
"CSAFPID-31021",
"CSAFPID-31022",
"CSAFPID-31023",
"CSAFPID-31024",
"CSAFPID-31025",
"CSAFPID-31026",
"CSAFPID-31027",
"CSAFPID-31028",
"CSAFPID-31029",
"CSAFPID-31030",
"CSAFPID-31031",
"CSAFPID-31032",
"CSAFPID-31033",
"CSAFPID-31034",
"CSAFPID-31035",
"CSAFPID-31036",
"CSAFPID-31037",
"CSAFPID-31038",
"CSAFPID-31039",
"CSAFPID-31040",
"CSAFPID-31041",
"CSAFPID-31042",
"CSAFPID-31043",
"CSAFPID-31044",
"CSAFPID-31045",
"CSAFPID-31046",
"CSAFPID-31047",
"CSAFPID-31048"
],
"summary": "Affected Products."
}
],
"relationships": [
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.0.0 installed on CS3B-LS610-OM",
"product_id": "CSAFPID-31001"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V1.1.0 installed on OHV-F230-B17",
"product_id": "CSAFPID-31002"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11002"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V1.3.4 installed on OIT500-F113-B17-CB",
"product_id": "CSAFPID-31003"
},
"product_reference": "CSAFPID-21003",
"relates_to_product_reference": "CSAFPID-11003"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.2.3 installed on PCV100-F200-B17-V1D",
"product_id": "CSAFPID-31004"
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11004"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.2.5 installed on PCV100-F200-B17-V1D-6011",
"product_id": "CSAFPID-31005"
},
"product_reference": "CSAFPID-21005",
"relates_to_product_reference": "CSAFPID-11005"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.2.3 installed on PCV100-F200-B17-V1D-6011-6997",
"product_id": "CSAFPID-31006"
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11006"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.2.5 installed on PCV100-F200-B17-V1D-6011-8203",
"product_id": "CSAFPID-31007"
},
"product_reference": "CSAFPID-21005",
"relates_to_product_reference": "CSAFPID-11007"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.2.3 installed on PCV50-F200-B17-V1D",
"product_id": "CSAFPID-31008"
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11008"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.2.3 installed on PCV80-F200-B17-V1D",
"product_id": "CSAFPID-31009"
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11009"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V1.0.3 installed on PGV100A-F200A-B28-V1D",
"product_id": "CSAFPID-31010"
},
"product_reference": "CSAFPID-21006",
"relates_to_product_reference": "CSAFPID-11010"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V1.0.3 installed on PGV100A-F200-B28-V1D",
"product_id": "CSAFPID-31011"
},
"product_reference": "CSAFPID-21006",
"relates_to_product_reference": "CSAFPID-11011"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V2.1.1 installed on PGV100AQ-F200A-B28-V1D",
"product_id": "CSAFPID-31012"
},
"product_reference": "CSAFPID-21007",
"relates_to_product_reference": "CSAFPID-11012"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V2.1.1 installed on PGV100AQ-F200-B28-V1D",
"product_id": "CSAFPID-31013"
},
"product_reference": "CSAFPID-21007",
"relates_to_product_reference": "CSAFPID-11013"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V2.0.0 installed on PGV100-F200A-B17-V1D",
"product_id": "CSAFPID-31014"
},
"product_reference": "CSAFPID-21008",
"relates_to_product_reference": "CSAFPID-11014"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V2.0.0 installed on PGV100-F200-B17-V1D-7477",
"product_id": "CSAFPID-31015"
},
"product_reference": "CSAFPID-21008",
"relates_to_product_reference": "CSAFPID-11015"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V2.0.0 installed on PGV150I-F200A-B17-V1D",
"product_id": "CSAFPID-31016"
},
"product_reference": "CSAFPID-21008",
"relates_to_product_reference": "CSAFPID-11016"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA150-F200A-B17-V1D",
"product_id": "CSAFPID-31017"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11017"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA150-F200-B17-V1D",
"product_id": "CSAFPID-31018"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11018"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA200-F200A-B17-T-V1D",
"product_id": "CSAFPID-31019"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11019"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA200-F200A-B17-V1D",
"product_id": "CSAFPID-31020"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11020"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA200-F200-B17-V1D",
"product_id": "CSAFPID-31021"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11021"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA300-F200A-B17-T-V1D",
"product_id": "CSAFPID-31022"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11022"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA300-F200A-B17-V1D",
"product_id": "CSAFPID-31023"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11023"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA300-F200-B17-T-V1D",
"product_id": "CSAFPID-31024"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11024"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA300-F200-B17-V1D",
"product_id": "CSAFPID-31025"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11025"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA400-F200A-B17-T-V1D",
"product_id": "CSAFPID-31026"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11026"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA400-F200A-B17-V1D",
"product_id": "CSAFPID-31027"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11027"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA400-F200-B17-V1D",
"product_id": "CSAFPID-31028"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11028"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA500-F200A-B17-T-V1D",
"product_id": "CSAFPID-31029"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11029"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA500-F200A-B17-V1D",
"product_id": "CSAFPID-31030"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11030"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA500-F200-B17-V1D",
"product_id": "CSAFPID-31031"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11031"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA600-F200A-B17-V1D",
"product_id": "CSAFPID-31032"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11032"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA600-F200-B17-V1D",
"product_id": "CSAFPID-31033"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11033"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA700-F200-B17-V1D",
"product_id": "CSAFPID-31034"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11034"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.1.5 installed on PHA800-F200-B17-V1D",
"product_id": "CSAFPID-31035"
},
"product_reference": "CSAFPID-21009",
"relates_to_product_reference": "CSAFPID-11035"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V1.0.3 installed on PXV100A-F200-B28-V1D",
"product_id": "CSAFPID-31036"
},
"product_reference": "CSAFPID-21006",
"relates_to_product_reference": "CSAFPID-11036"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V1.0.3 installed on PXV100A-F200-B28-V1D-6011",
"product_id": "CSAFPID-31037"
},
"product_reference": "CSAFPID-21006",
"relates_to_product_reference": "CSAFPID-11037"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V2.1.1 installed on PXV100AQ-F200-B28-V1D",
"product_id": "CSAFPID-31038"
},
"product_reference": "CSAFPID-21007",
"relates_to_product_reference": "CSAFPID-11038"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V2.1.1 installed on PXV100AQ-F200-B28-V1D-6011",
"product_id": "CSAFPID-31039"
},
"product_reference": "CSAFPID-21007",
"relates_to_product_reference": "CSAFPID-11039"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V4.2.0 installed on PXV100-F200-B17-V1D",
"product_id": "CSAFPID-31040"
},
"product_reference": "CSAFPID-21010",
"relates_to_product_reference": "CSAFPID-11040"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V4.2.0 installed on PXV100-F200-B17-V1D-3636",
"product_id": "CSAFPID-31041"
},
"product_reference": "CSAFPID-21010",
"relates_to_product_reference": "CSAFPID-11041"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.0.0 installed on WCS3B-LS610",
"product_id": "CSAFPID-31042"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11042"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.0.0 installed on WCS3B-LS610D",
"product_id": "CSAFPID-31043"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11043"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.0.0 installed on WCS3B-LS610DH",
"product_id": "CSAFPID-31044"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11044"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.0.0 installed on WCS3B-LS610DH-OM",
"product_id": "CSAFPID-31045"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11045"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.0.0 installed on WCS3B-LS610D-OM",
"product_id": "CSAFPID-31046"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11046"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.0.0 installed on WCS3B-LS610H",
"product_id": "CSAFPID-31047"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11047"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.0.0 installed on WCS3B-LS610H-OM",
"product_id": "CSAFPID-31048"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11048"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-20986",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "A Denial of Service vulnerability was found in Hilscher PROFINET IO Device V3 in versions prior to V3.14.0.7. This may lead to unexpected loss of cyclic communication or interruption of acyclic communication.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006",
"CSAFPID-31007",
"CSAFPID-31008",
"CSAFPID-31009",
"CSAFPID-31010",
"CSAFPID-31011",
"CSAFPID-31012",
"CSAFPID-31013",
"CSAFPID-31014",
"CSAFPID-31015",
"CSAFPID-31016",
"CSAFPID-31017",
"CSAFPID-31018",
"CSAFPID-31019",
"CSAFPID-31020",
"CSAFPID-31021",
"CSAFPID-31022",
"CSAFPID-31023",
"CSAFPID-31024",
"CSAFPID-31025",
"CSAFPID-31026",
"CSAFPID-31027",
"CSAFPID-31028",
"CSAFPID-31029",
"CSAFPID-31030",
"CSAFPID-31031",
"CSAFPID-31032",
"CSAFPID-31033",
"CSAFPID-31034",
"CSAFPID-31035",
"CSAFPID-31036",
"CSAFPID-31037",
"CSAFPID-31038",
"CSAFPID-31039",
"CSAFPID-31040",
"CSAFPID-31041",
"CSAFPID-31042",
"CSAFPID-31043",
"CSAFPID-31044",
"CSAFPID-31045",
"CSAFPID-31046",
"CSAFPID-31047",
"CSAFPID-31048"
]
},
"remediations": [
{
"category": "mitigation",
"details": "An external protective measure is required.\n\n- Minimize network exposure for affected products and ensure that they are not accessible via the Internet.\n- Isolate affected products from the corporate network.\n- If remote access is required, use secure methods such as virtual private networks (VPNs).",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006",
"CSAFPID-31007",
"CSAFPID-31008",
"CSAFPID-31009",
"CSAFPID-31010",
"CSAFPID-31011",
"CSAFPID-31012",
"CSAFPID-31013",
"CSAFPID-31014",
"CSAFPID-31015",
"CSAFPID-31016",
"CSAFPID-31017",
"CSAFPID-31018",
"CSAFPID-31019",
"CSAFPID-31020",
"CSAFPID-31021",
"CSAFPID-31022",
"CSAFPID-31023",
"CSAFPID-31024",
"CSAFPID-31025",
"CSAFPID-31026",
"CSAFPID-31027",
"CSAFPID-31028",
"CSAFPID-31029",
"CSAFPID-31030",
"CSAFPID-31031",
"CSAFPID-31032",
"CSAFPID-31033",
"CSAFPID-31034",
"CSAFPID-31035",
"CSAFPID-31036",
"CSAFPID-31037",
"CSAFPID-31038",
"CSAFPID-31039",
"CSAFPID-31040",
"CSAFPID-31041",
"CSAFPID-31042",
"CSAFPID-31043",
"CSAFPID-31044",
"CSAFPID-31045",
"CSAFPID-31046",
"CSAFPID-31047",
"CSAFPID-31048"
]
}
],
"title": "CVE-2021-20986"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…