CVE-2021-31883

Name of the Vulnerable Software and Affected Versions: Capital Embedded AR Classic 431-422 versions prior to V2303 Capital Embedded AR Classic R20-11 versions prior to V2303 APOGEE MBC (PPC) (BACnet) (all versions) APOGEE MBC (PPC) (P2 Ethernet) (all versions) APOGEE MEC (PPC) (BACnet) (all versions) APOGEE MEC (PPC) (P2 Ethernet) (all versions) APOGEE PXC Compact (BACnet) (all versions) APOGEE PXC Compact (P2 Ethernet) (all versions) APOGEE PXC Modular (BACnet) (all versions) APOGEE PXC Modular (P2 Ethernet) (all versions) Capital VSTAR (all versions) Nucleus NET (all versions) Nucleus ReadyStart V3 versions prior to V2017.02.4 Nucleus Source Code (all versions) TALON TC Compact (BACnet) (all versions) TALON TC Modular (BACnet) (all versions)

Description: A Denial-of-Service condition can occur due to the DHCP client application not validating the length of the Vendor option(s) when processing a DHCP ACK message.

Recommendations: For Capital Embedded AR Classic 431-422 and Capital Embedded AR Classic R20-11, update to version V2303 or later. For APOGEE MBC (PPC) (BACnet) and APOGEE MBC (PPC) (P2 Ethernet), consider disabling the DHCP client application until a patch is available. For APOGEE MEC (PPC) (BACnet) and APOGEE MEC (PPC) (P2 Ethernet), restrict access to the DHCP client application until a fix is provided. For APOGEE PXC Compact (BACnet) and APOGEE PXC Compact (P2 Ethernet), avoid using the Vendor option(s) in the DHCP ACK message until the issue is resolved. For APOGEE PXC Modular (BACnet) and APOGEE PXC Modular (P2 Ethernet), temporarily disable the DHCP client application until a patch is available. For Capital VSTAR, Nucleus NET, and Nucleus Source Code, restrict access to the DHCP client application until a fix is provided. For Nucleus ReadyStart V3, update to version V2017.02.4 or later. For TALON TC Compact (BACnet) and TALON TC Modular (BACnet), consider disabling the DHCP client application until a patch is available.