PT-2021-4201 · Siemens · Siprotec 5
Published
2021-09-14
·
Updated
2021-12-16
·
CVE-2021-33719
CVSS v2.0
10
Critical
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
SIPROTEC 5 relays with CPU variants CP050 versions prior to V8.80
SIPROTEC 5 relays with CPU variants CP100 versions prior to V8.80
SIPROTEC 5 relays with CPU variants CP200 versions prior to V8.80
SIPROTEC 5 relays with CPU variants CP300 versions prior to V8.80
Description
The issue is caused by a buffer overflow on the stack. Exploitation of this issue may allow a remote attacker to execute arbitrary code by sending specially crafted packets to port 4443/tcp. This could also cause a Denial-of-Service condition.
Recommendations
For SIPROTEC 5 relays with CPU variants CP050 versions prior to V8.80, update to version V8.80 or later.
For SIPROTEC 5 relays with CPU variants CP100 versions prior to V8.80, update to version V8.80 or later.
For SIPROTEC 5 relays with CPU variants CP200, update to version V8.80 or later.
For SIPROTEC 5 relays with CPU variants CP300 versions prior to V8.80, update to version V8.80 or later.
As a temporary workaround, consider restricting access to port 4443/tcp to minimize the risk of exploitation.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Siprotec 5