CVE-2021-30063

Name of the Vulnerable Software and Affected Versions Schneider Electric ConneXium Tofino OPCLSM TCSEFM0000 versions prior to 03.23 Belden Tofino Xenon Security Appliance (affected versions not specified) Tofino Argon Security Appliance (affected versions not specified) EAGLE 20 Tofino (affected versions not specified)

Description The issue is related to a denial of service caused by crafted OPC packets. It is also associated with a buffer overflow in memory, which can be exploited by a remote attacker to cause a denial of service using specially crafted OPC packets.

Recommendations For Schneider Electric ConneXium Tofino OPCLSM TCSEFM0000 versions prior to 03.23, update to version 03.23 or later. For Belden Tofino Xenon Security Appliance, Tofino Argon Security Appliance, and EAGLE 20 Tofino, at the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting the use of OPC packets to minimize the risk of exploitation.