critical
9.8
CWE
787 120
Advisory Published
Updated

CVE-2021-31895

First published: Tue Jul 13 2021(Updated: )

A vulnerability has been identified in RUGGEDCOM ROS M2100 (All versions < V4.3.7), RUGGEDCOM ROS M2200 (All versions < V4.3.7), RUGGEDCOM ROS M969 (All versions < V4.3.7), RUGGEDCOM ROS RMC (All versions < V4.3.7), RUGGEDCOM ROS RMC20 (All versions < V4.3.7), RUGGEDCOM ROS RMC30 (All versions < V4.3.7), RUGGEDCOM ROS RMC40 (All versions < V4.3.7), RUGGEDCOM ROS RMC41 (All versions < V4.3.7), RUGGEDCOM ROS RMC8388 V4.X (All versions < V4.3.7), RUGGEDCOM ROS RMC8388 V5.X (All versions < V5.5.4), RUGGEDCOM ROS RP110 (All versions < V4.3.7), RUGGEDCOM ROS RS400 (All versions < V4.3.7), RUGGEDCOM ROS RS401 (All versions < V4.3.7), RUGGEDCOM ROS RS416 (All versions < V4.3.7), RUGGEDCOM ROS RS416v2 V4.X (All versions < V4.3.7), RUGGEDCOM ROS RS416v2 V5.X (All versions < 5.5.4), RUGGEDCOM ROS RS8000 (All versions < V4.3.7), RUGGEDCOM ROS RS8000A (All versions < V4.3.7), RUGGEDCOM ROS RS8000H (All versions < V4.3.7), RUGGEDCOM ROS RS8000T (All versions < V4.3.7), RUGGEDCOM ROS RS900 (32M) V4.X (All versions < V4.3.7), RUGGEDCOM ROS RS900 (32M) V5.X (All versions < V5.5.4), RUGGEDCOM ROS RS900G (All versions < V4.3.7), RUGGEDCOM ROS RS900G (32M) V4.X (All versions < V4.3.7), RUGGEDCOM ROS RS900G (32M) V5.X (All versions < V5.5.4), RUGGEDCOM ROS RS900GP (All versions < V4.3.7), RUGGEDCOM ROS RS900L (All versions < V4.3.7), RUGGEDCOM ROS RS900W (All versions < V4.3.7), RUGGEDCOM ROS RS910 (All versions < V4.3.7), RUGGEDCOM ROS RS910L (All versions < V4.3.7), RUGGEDCOM ROS RS910W (All versions < V4.3.7), RUGGEDCOM ROS RS920L (All versions < V4.3.7), RUGGEDCOM ROS RS920W (All versions < V4.3.7), RUGGEDCOM ROS RS930L (All versions < V4.3.7), RUGGEDCOM ROS RS930W (All versions < V4.3.7), RUGGEDCOM ROS RS940G (All versions < V4.3.7), RUGGEDCOM ROS RS969 (All versions < V4.3.7), RUGGEDCOM ROS RSG2100 (32M) V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG2100 (32M) V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG2100 V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG2100P (All versions < V4.3.7), RUGGEDCOM ROS RSG2100P (32M) V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG2100P (32M) V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG2200 (All versions < V4.3.7), RUGGEDCOM ROS RSG2288 V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG2288 V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG2300 V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG2300 V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG2300P V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG2300P V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG2488 V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG2488 V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG900 V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG900 V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG900C (All versions < V5.5.4), RUGGEDCOM ROS RSG900G V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG900G V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSG900R (All versions < V5.5.4), RUGGEDCOM ROS RSG920P V4.X (All versions < V4.3.7), RUGGEDCOM ROS RSG920P V5.X (All versions < V5.5.4), RUGGEDCOM ROS RSL910 (All versions < V5.5.4), RUGGEDCOM ROS RST2228 (All versions < V5.5.4), RUGGEDCOM ROS RST916C (All versions < V5.5.4), RUGGEDCOM ROS RST916P (All versions < V5.5.4), RUGGEDCOM ROS i800 (All versions < V4.3.7), RUGGEDCOM ROS i801 (All versions < V4.3.7), RUGGEDCOM ROS i802 (All versions < V4.3.7), RUGGEDCOM ROS i803 (All versions < V4.3.7). The DHCP client in affected devices fails to properly sanitize incoming DHCP packets. This could allow an unauthenticated remote attacker to cause memory to be overwritten, potentially allowing remote code execution.

Credit: productcert@siemens.com

Affected SoftwareAffected VersionHow to fix
Siemens Ruggedcom Ros I800<4.3.7
Siemens Ruggedcom I800
Siemens Ruggedcom Ros I801<4.3.7
Siemens Ruggedcom I801
Siemens Ruggedcom Ros I802<4.3.7
Siemens Ruggedcom I802
Siemens Ruggedcom Ros I803<4.3.7
Siemens Ruggedcom I803
Siemens Ruggedcom Ros M969<4.3.7
Siemens Ruggedcom M969
Siemens Ruggedcom Ros M2100<4.3.7
Siemens Ruggedcom M2100
Siemens Ruggedcom Ros M2200<4.3.7
Siemens Ruggedcom M2200
Siemens Ruggedcom Ros Rmc<4.3.7
Siemens Ruggedcom Rmc
Siemens Ruggedcom Ros Rmc20<4.3.7
Siemens Ruggedcom Rmc20
Siemens Ruggedcom Ros Rmc30<4.3.7
Siemens Ruggedcom Rmc30
Siemens Ruggedcom Ros Rmc40<4.3.7
Siemens Ruggedcom Rmc40
Siemens Ruggedcom Ros Rmc41<4.3.7
Siemens Ruggedcom Rmc41
Siemens Ruggedcom Ros Rmc8388<4.3.7
Siemens Ruggedcom Ros Rmc8388>=5.0.0<5.5.4
Siemens Ruggedcom Rmc8388
Siemens Ruggedcom Ros Rp110<4.3.7
Siemens Ruggedcom Rp110
Siemens Ruggedcom Ros Rs400<4.3.7
Siemens Ruggedcom Rs400
Siemens Ruggedcom Ros Rs401<4.3.7
Siemens Ruggedcom Rs401
Siemens Ruggedcom Ros Rs416<4.3.7
Siemens Ruggedcom Rs416
Siemens Ruggedcom Ros Rs416v2<4.3.7
Siemens Ruggedcom Ros Rs416v2>=5.5.0<5.5.4
Siemens Ruggedcom Rs416v2
Siemens Ruggedcom Ros Rs900<4.3.7
Siemens Ruggedcom Ros Rs900>=5.0.0<5.5.4
Siemens Ruggedcom Rs900
Siemens Ruggedcom Ros Rs900g<4.3.7
Siemens Ruggedcom Ros Rs900g>=5.0.0<5.5.4
Siemens Ruggedcom Rs900g
Siemens Ruggedcom Ros Rs900gp<4.3.7
Siemens Ruggedcom Rs900gp
Siemens Ruggedcom Ros Rs900l<4.3.7
Siemens Ruggedcom Rs900l
Siemens Ruggedcom Ros Rs900w<4.3.7
Siemens Ruggedcom Rs900w
Siemens Ruggedcom Ros Rs910<4.3.7
Siemens Ruggedcom Rs910
Siemens Ruggedcom Ros Rs910l<4.3.7
Siemens Ruggedcom Rs910l
Siemens Ruggedcom Ros Rs910w<4.3.7
Siemens Ruggedcom Rs910w
Siemens Ruggedcom Ros Rs920l<4.3.7
Siemens Ruggedcom Rs920l
Siemens Ruggedcom Ros Rs920w<4.3.7
Siemens Ruggedcom Rs920w
Siemens Ruggedcom Ros Rs930l<4.3.7
Siemens Ruggedcom Rs930l
Siemens Ruggedcom Ros Rs930w<4.3.7
Siemens Ruggedcom Rs930w
Siemens Ruggedcom Ros Rs940g<4.3.7
Siemens Ruggedcom Rs940g
Siemens Ruggedcom Ros Rs969<4.3.7
Siemens Ruggedcom Rs969
Siemens Ruggedcom Ros Rs8000<4.3.7
Siemens Ruggedcom Rs8000
Siemens Ruggedcom Ros Rs8000a<4.3.7
Siemens Ruggedcom Rs8000a
Siemens Ruggedcom Ros Rs8000h<4.3.7
Siemens Ruggedcom Rs8000h
Siemens Ruggedcom Ros Rs8000t<4.3.7
Siemens Ruggedcom Rs8000t
Siemens Ruggedcom Ros Rsg900<4.3.7
Siemens Ruggedcom Ros Rsg900>=5.5.0<5.5.4
Siemens Ruggedcom Rsg900
Siemens Ruggedcom Ros Rsg900c<5.5.4
Siemens Ruggedcom Rsg900c
Siemens Ruggedcom Ros Rsg900g<4.3.7
Siemens Ruggedcom Ros Rsg900g>=5.0.0<5.5.4
Siemens Ruggedcom Rsg900g
Siemens Ruggedcom Ros Rsg900r<5.5.4
Siemens Ruggedcom Rsg900r
Siemens Ruggedcom Ros Rsg920p<4.3.7
Siemens Ruggedcom Ros Rsg920p>=5.0.0<5.5.4
Siemens Ruggedcom Rsg920p
Siemens Ruggedcom Ros Rsg2100<4.3.7
Siemens Ruggedcom Ros Rsg2100>=5.0.0<5.5.4
Siemens Ruggedcom Rsg2100
Siemens Ruggedcom Ros Rsg2100p<4.3.7
Siemens Ruggedcom Ros Rsg2100p>=5.0.0<5.3.4
Siemens Ruggedcom Rsg2100p
Siemens Ruggedcom Ros Rsg2200<4.3.7
Siemens Ruggedcom Rsg2200
Siemens Ruggedcom Ros Rsg2288<4.3.7
Siemens Ruggedcom Ros Rsg2288>=5.0.0<5.5.4
Siemens Ruggedcom Rsg2288
Siemens Ruggedcom Ros Rsg2300<4.3.7
Siemens Ruggedcom Ros Rsg2300>=5.0.0<5.3.4
Siemens Ruggedcom Rsg2300
Siemens Ruggedcom Ros Rsg2300p<4.3.7
Siemens Ruggedcom Ros Rsg2300p>=5.5.0<5.5.4
Siemens Ruggedcom Rsg2300p
Siemens Ruggedcom Ros Rsg2488<4.3.7
Siemens Ruggedcom Ros Rsg2488>=5.0.0<5.5.4
Siemens Ruggedcom Rsg2488
Siemens Ruggedcom Ros Rsl910<5.5.4
Siemens Ruggedcom Rsl910
Siemens Ruggedcom Ros Rst916c<5.5.4
Siemens Ruggedcom Rst916c
Siemens Ruggedcom Ros Rst916p<5.5.4
Siemens Ruggedcom Rst916p
Siemens Ruggedcom Ros Rst2228<5.5.4
Siemens Ruggedcom Rst2228

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203