CVE-2021-37182

Name of the Vulnerable Software and Affected Versions SCALANCE XM408-4C versions prior to V6.5 SCALANCE XM408-4C (L3 int.) versions prior to V6.5 SCALANCE XM408-8C versions prior to V6.5 SCALANCE XM408-8C (L3 int.) versions prior to V6.5 SCALANCE XM416-4C versions prior to V6.5 SCALANCE XM416-4C (L3 int.) versions prior to V6.5 SCALANCE XR524-8C, 1x230V versions prior to V6.5 SCALANCE XR524-8C, 1x230V (L3 int.) versions prior to V6.5 SCALANCE XR524-8C, 24V versions prior to V6.5 SCALANCE XR524-8C, 24V (L3 int.) versions prior to V6.5 SCALANCE XR524-8C, 2x230V versions prior to V6.5 SCALANCE XR524-8C, 2x230V (L3 int.) versions prior to V6.5 SCALANCE XR526-8C, 1x230V versions prior to V6.5 SCALANCE XR526-8C, 1x230V (L3 int.) versions prior to V6.5 SCALANCE XR526-8C, 24V versions prior to V6.5 SCALANCE XR526-8C, 24V (L3 int.) versions prior to V6.5 SCALANCE XR526-8C, 2x230V versions prior to V6.5 SCALANCE XR526-8C, 2x230V (L3 int.) versions prior to V6.5 SCALANCE XR528-6M versions prior to V6.5 SCALANCE XR528-6M (2HR2) versions prior to V6.5 SCALANCE XR528-6M (2HR2, L3 int.) versions prior to V6.5 SCALANCE XR528-6M (L3 int.) versions prior to V6.5 SCALANCE XR552-12M versions prior to V6.5 SCALANCE XR552-12M (2HR2) versions prior to V6.5 SCALANCE XR552-12M (2HR2, L3 int.) versions prior to V6.5

Description The OSPF protocol implementation in affected devices fails to verify the checksum and length fields in the OSPF LS Update messages. An unauthenticated remote attacker could exploit this vulnerability to cause interruptions in the network by sending specially crafted OSPF packets. Successful exploitation requires OSPF to be enabled on an affected device.

Recommendations For all versions prior to V6.5, update to version V6.5 or later to resolve the issue. As a temporary workaround, consider disabling OSPF on affected devices until a patch is available. Restrict access to the network to minimize the risk of exploitation.