First published: Wed Jan 06 2021(Updated: )
A NULL pointer deference vulnerability has been identified in the protocol converter. An attacker could send a specially crafted packet that could reboot the device running Crimson 3.1 (Build versions prior to 3119.001).
Credit: ics-cert@hq.dhs.gov
Affected Software | Affected Version | How to fix |
---|---|---|
Redlion Crimson | =3.1 | |
Red Lion Crimson 3.1: Build versions prior to 3119.001 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this issue is CVE-2020-27279.
The severity of CVE-2020-27279 is high with a CVSS score of 7.5.
CVE-2020-27279 affects Crimson 3.1 (Build versions prior to 3119.001).
An attacker could exploit CVE-2020-27279 by sending a specially crafted packet that could reboot the device running Crimson 3.1 (Build versions prior to 3119.001).
Yes, a fix is available for CVE-2020-27279. It is recommended to update to Crimson 3.1 (Build version 3119.001) or later.