CVE-2021-25664

Name of the Vulnerable Software and Affected Versions Capital Embedded AR Classic 431-422 versions all Capital Embedded AR Classic R20-11 versions prior to V2303 Nucleus NET versions all Nucleus ReadyStart V3 versions prior to V2017.02.4 Nucleus ReadyStart V4 versions prior to V4.1.0 Nucleus Source Code versions all

Description A vulnerability has been identified in the processing of the Hop-by-Hop extension header in IPv6 packets. The function that handles this header and its options lacks checks against the length field, allowing attackers to cause the function to enter an infinite loop by providing arbitrary length values.

Recommendations For Capital Embedded AR Classic 431-422, update to a version that includes a fix for this issue. For Capital Embedded AR Classic R20-11, update to version V2303 or later. For Nucleus NET, consider temporarily disabling the processing of IPv6 packets until a patch is available. For Nucleus ReadyStart V3, update to version V2017.02.4 or later. For Nucleus ReadyStart V4, update to version V4.1.0 or later. For Nucleus Source Code, restrict the use of the affected IPv6 stack until a fix is implemented.