First published: Thu Apr 22 2021(Updated: )
A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5.5), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.20), Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2017.02.3), Nucleus ReadyStart V4 (All versions < V4.1.0), Nucleus Source Code (Versions including affected DNS modules), SIMOTICS CONNECT 400 (All versions < V0.5.0.0), TALON TC Compact (BACnet) (All versions < V3.5.5), TALON TC Modular (BACnet) (All versions < V3.5.5). The DNS domain name record decompression functionality does not properly validate the pointer offset values. The parsing of malformed responses could result in a read access past the end of an allocated structure. An attacker with a privileged position in the network could leverage this vulnerability to cause a denial-of-service condition.
Credit: productcert@siemens.com productcert@siemens.com
Affected Software | Affected Version | How to fix |
---|---|---|
Siemens Simotics Connect 400 Firmware | <0.5.0.0 | |
Siemens Simotics Connect 400 | ||
Siemens Nucleus NET | ||
Siemens Nucleus ReadyStart v3 | <2017.02.3 | |
Siemens Nucleus ReadyStart v4 | <4.1.0 | |
Siemens Nucleus Source Code |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability identifier is CVE-2020-27738.
The severity of CVE-2020-27738 is high with a severity value of 7.4.
The affected software versions are APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5.5), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.20), Nucleus NET (All versions), Nucleus R.
Yes, Siemens Simotics Connect 400 Firmware with versions up to exclusive 0.5.0.0 is vulnerable to CVE-2020-27738.
Yes, Siemens Nucleus Net, Siemens Nucleus Readystart V3 (up to exclusive 2017.02.3), and Siemens Nucleus Readystart V4 (up to exclusive 4.1.0) are affected by CVE-2020-27738.