First published: Fri Jun 25 2021(Updated: )
In Weidmueller Industrial WLAN devices in multiple versions an exploitable remote code execution vulnerability exists in the iw_webs configuration parsing functionality. A specially crafted user name entry can cause an overflow of an error message buffer, resulting in remote code execution. An attacker can send commands while authenticated as a low privilege user to trigger this vulnerability.
Credit: info@cert.vde.com
Affected Software | Affected Version | How to fix |
---|---|---|
Weidmueller Ie-wl-bl-ap-cl-eu Firmware | <=1.16.18 | |
Weidmueller Ie-wl-bl-ap-cl-eu | ||
Weidmueller Ie-wlt-bl-ap-cl-eu Firmware | <=1.16.18 | |
Weidmueller Ie-wlt-bl-ap-cl-eu | ||
Weidmueller Ie-wl-bl-ap-cl-us Firmware | <=1.16.18 | |
Weidmueller Ie-wl-bl-ap-cl-us | ||
Weidmueller Ie-wlt-bl-ap-cl-us Firmware | <=1.16.18 | |
Weidmueller Ie-wlt-bl-ap-cl-us | ||
Weidmueller Ie-wl-vl-ap-br-cl-eu Firmware | <=1.16.18 | |
Weidmueller Ie-wl-vl-ap-br-cl-eu | ||
Weidmueller Ie-wlt-vl-ap-br-cl-eu Firmware | <=1.16.18 | |
Weidmueller Ie-wlt-vl-ap-br-cl-eu | ||
Weidmueller Ie-wl-vl-ap-br-cl-us Firmware | <=1.16.18 | |
Weidmueller Ie-wl-vl-ap-br-cl-us | ||
Weidmueller Ie-wlt-vl-ap-br-cl-us Firmware | <=1.16.18 | |
Weidmueller Ie-wlt-vl-ap-br-cl-us | ||
Weidmueller Ie-wl-bl-ap-cl-eu Firmware | <=1.11.10 | |
Weidmueller Ie-wlt-bl-ap-cl-eu Firmware | <=1.11.10 | |
Weidmueller Ie-wl-bl-ap-cl-us Firmware | <=1.11.10 | |
Weidmueller Ie-wlt-bl-ap-cl-us Firmware | <=1.11.10 | |
Weidmueller Ie-wl-vl-ap-br-cl-eu Firmware | <=1.11.10 | |
Weidmueller Ie-wlt-vl-ap-br-cl-eu Firmware | <=1.11.10 | |
Weidmueller Ie-wl-vl-ap-br-cl-us Firmware | <=1.11.10 | |
Weidmueller Ie-wlt-vl-ap-br-cl-us Firmware | <=1.11.10 |
For IE-WL(T)-BL-AP-CL-XX versions V1.16.21 (Build 21010513) and greater are fixed. For IE-WL(T)-VL-AP-CL-XX versions V1.11.13 (Build 21010513) and greater are fixed.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-33537 is a remote code execution vulnerability in Weidmueller Industrial WLAN devices in multiple versions.
CVE-2021-33537 vulnerability has a severity score of 8.8 (high).
CVE-2021-33537 vulnerability occurs due to an overflow of an error message buffer when parsing the iw_webs configuration in Weidmueller Industrial WLAN devices.
CVE-2021-33537 vulnerability affects the following versions of Weidmueller Industrial WLAN devices: Ie-wl-bl-ap-cl-eu Firmware up to and including 1.16.18, Ie-wlt-bl-ap-cl-eu Firmware up to and including 1.16.18, Ie-wl-bl-ap-cl-us Firmware up to and including 1.16.18, Ie-wlt-bl-ap-cl-us Firmware up to and including 1.16.18, Ie-wl-vl-ap-br-cl-eu Firmware up to and including 1.16.18, Ie-wlt-vl-ap-br-cl-eu Firmware up to and including 1.16.18, Ie-wl-vl-ap-br-cl-us Firmware up to and including 1.16.18, Ie-wlt-vl-ap-br-cl-us Firmware up to and including 1.16.18, Ie-wl-bl-ap-cl-eu Firmware up to and including 1.11.10, Ie-wlt-bl-ap-cl-eu Firmware up to and including 1.11.10, Ie-wl-bl-ap-cl-us Firmware up to and including 1.11.10, Ie-wlt-bl-ap-cl-us Firmware up to and including 1.11.10, Ie-wl-vl-ap-br-cl-eu Firmware up to and including 1.11.10, and Ie-wlt-vl-ap-br-cl-eu Firmware up to and including 1.11.10.
To fix the CVE-2021-33537 vulnerability, it is recommended to update your Weidmueller Industrial WLAN devices to a version higher than 1.16.18 or 1.11.10, depending on the affected firmware.