CVE-2021-31890

Name of the Vulnerable Software and Affected Versions Capital Embedded AR Classic 431-422 versions prior to V2303 Capital Embedded AR Classic R20-11 versions prior to V2303 PLUSCONTROL 1st Gen versions prior to the fixed version SIMOTICS CONNECT 400 versions prior to V0.5.0.0 SIMOTICS CONNECT 400 versions prior to V1.0.0.0 APOGEE MBC versions prior to the fixed version APOGEE MEC versions prior to the fixed version APOGEE PXC versions prior to the fixed version Capital VSTAR versions prior to the fixed version Nucleus NET versions prior to the fixed version Nucleus ReadyStart V3 versions prior to V2017.02.4 Nucleus ReadyStart V4 versions prior to V4.1.1 Nucleus Source Code versions prior to the fixed version TALON TC versions prior to the fixed version

Description A vulnerability has been identified that is related to errors in processing the TCP packet header. The total length of a TCP payload, set in the IP header, is unchecked, which may lead to various side effects, including Information Leak and Denial-of-Service conditions, depending on the network buffer organization in memory.

Recommendations For Capital Embedded AR Classic 431-422, update to a version that includes the fix for this issue. For Capital Embedded AR Classic R20-11, update to a version that includes the fix for this issue. For PLUSCONTROL 1st Gen, update to a version that includes the fix for this issue. For SIMOTICS CONNECT 400, update to a version that includes the fix for this issue, specifically V0.5.0.0 or later, or V1.0.0.0 or later. For APOGEE MBC, update to a version that includes the fix for this issue. For APOGEE MEC, update to a version that includes the fix for this issue. For APOGEE PXC, update to a version that includes the fix for this issue. For Capital VSTAR, update to a version that includes the fix for this issue. For Nucleus NET, update to a version that includes the fix for this issue. For Nucleus ReadyStart V3, update to V2017.02.4 or later. For Nucleus ReadyStart V4, update to V4.1.1 or later. For Nucleus Source Code, update to a version that includes the fix for this issue. For TALON TC, update to a version that includes the fix for this issue.