First published: Thu May 13 2021(Updated: )
In Weidmüller u-controls and IoT-Gateways in versions up to 1.12.1 a network port intended only for device-internal usage is accidentally accessible via external network interfaces. By exploiting this vulnerability the device may be manipulated or the operation may be stopped.
Credit: info@cert.vde.com
Affected Software | Affected Version | How to fix |
---|---|---|
Weidmueller Uc20-wl2000-ac Firmware | >=1.3.0<1.9.1 | |
Weidmueller Uc20-wl2000-ac Firmware | >=1.10.0<1.10.3 | |
Weidmueller Uc20-wl2000-ac Firmware | =1.11.0 | |
Weidmueller Uc20-wl2000-ac Firmware | =1.12.1 | |
Weidmueller Uc20-wl2000-ac | ||
Weidmueller Uc20-wl2000-iot Firmware | >=1.3.0<1.9.1 | |
Weidmueller Uc20-wl2000-iot Firmware | >=1.10.0<1.10.3 | |
Weidmueller Uc20-wl2000-iot Firmware | =1.11.0 | |
Weidmueller Uc20-wl2000-iot Firmware | =1.12.1 | |
Weidmueller Uc20-wl2000-iot | ||
Weidmueller Iot-gw30 Firmware | >=1.3.0<1.9.1 | |
Weidmueller Iot-gw30 Firmware | >=1.10.0<1.10.3 | |
Weidmueller Iot-gw30 Firmware | =1.11.0 | |
Weidmueller Iot-gw30 Firmware | =1.12.1 | |
Weidmueller Iot-gw30 | ||
Weidmueller Iot-gw30-4g-eu Firmware | >=1.3.0<1.9.1 | |
Weidmueller Iot-gw30-4g-eu Firmware | >=1.10.0<1.10.3 | |
Weidmueller Iot-gw30-4g-eu Firmware | =1.11.0 | |
Weidmueller Iot-gw30-4g-eu Firmware | =1.12.1 | |
Weidmueller Iot-gw30-4g-eu |
Weidmüller recommends upgrading affected devices to the current firmware version 1.12.3 or higher which fixes this vulnerability.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-20999 is a vulnerability in Weidmüller u-controls and IoT-Gateways in versions up to 1.12.1.
The severity of CVE-2021-20999 is 9.8 (Critical).
By exploiting CVE-2021-20999, an attacker can manipulate the device or stop its operation.
Versions up to 1.12.1 of Weidmüller u-controls and IoT-Gateways are affected by CVE-2021-20999.
Your Weidmüller u-controls or IoT-Gateway is vulnerable to CVE-2021-20999 if it runs a version up to 1.12.1.