CVE-2021-30061

Severity Score

6.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 before 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, physically proximate attackers can execute code via a crafted file on a USB stick.

En Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 versiones anteriores a 03.23, TCSEFEA23F3F20/21, y Belden Tofino Xenon Security Appliance, los atacantes físicamente próximos pueden ejecutar código por medio de un archivo diseñado en una memoria USB

*Credits: N/A

Attack Vector

Physical

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2021-04-02 CVE Reserved
2022-04-03 CVE Published
2023-10-25 EPSS Updated
2024-08-03 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (2)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-05	2022-04-09
https://www.belden.com/support/security-assurance	2022-04-09

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Belden Search vendor "Belden"	Tofino Xenon Security Appliance Firmware Search vendor "Belden" for product "Tofino Xenon Security Appliance Firmware"	< 03.2.03 Search vendor "Belden" for product "Tofino Xenon Security Appliance Firmware" and version " < 03.2.03"	-	Affected	in	Belden Search vendor "Belden"	Tofino Xenon Security Appliance Search vendor "Belden" for product "Tofino Xenon Security Appliance"	-	-	Safe
Belden Search vendor "Belden"	Tofino Argon Fa-tsa-220-tx\/mm Firmware Search vendor "Belden" for product "Tofino Argon Fa-tsa-220-tx\/mm Firmware"	-	-	Affected	in	Belden Search vendor "Belden"	Tofino Argon Fa-tsa-220-tx\/mm Search vendor "Belden" for product "Tofino Argon Fa-tsa-220-tx\/mm"	-	-	Safe
Belden Search vendor "Belden"	Tofino Argon Fa-tsa-220-tx\/tx Firmware Search vendor "Belden" for product "Tofino Argon Fa-tsa-220-tx\/tx Firmware"	-	-	Affected	in	Belden Search vendor "Belden"	Tofino Argon Fa-tsa-220-tx\/tx Search vendor "Belden" for product "Tofino Argon Fa-tsa-220-tx\/tx"	-	-	Safe
Belden Search vendor "Belden"	Tofino Argon Fa-tsa-220-mm\/tx Firmware Search vendor "Belden" for product "Tofino Argon Fa-tsa-220-mm\/tx Firmware"	-	-	Affected	in	Belden Search vendor "Belden"	Tofino Argon Fa-tsa-220-mm\/tx Search vendor "Belden" for product "Tofino Argon Fa-tsa-220-mm\/tx"	-	-	Safe
Belden Search vendor "Belden"	Tofino Argon Fa-tsa-220-mm\/mm Firmware Search vendor "Belden" for product "Tofino Argon Fa-tsa-220-mm\/mm Firmware"	-	-	Affected	in	Belden Search vendor "Belden"	Tofino Argon Fa-tsa-220-mm\/mm Search vendor "Belden" for product "Tofino Argon Fa-tsa-220-mm\/mm"	-	-	Safe
Belden Search vendor "Belden"	Tofino Argon Fa-tsa-100-tx\/tx Firmware Search vendor "Belden" for product "Tofino Argon Fa-tsa-100-tx\/tx Firmware"	-	-	Affected	in	Belden Search vendor "Belden"	Tofino Argon Fa-tsa-100-tx\/tx Search vendor "Belden" for product "Tofino Argon Fa-tsa-100-tx\/tx"	-	-	Safe
Belden Search vendor "Belden"	Eagle 20 Tofino 943 987-505-mm\/mm Firmware Search vendor "Belden" for product "Eagle 20 Tofino 943 987-505-mm\/mm Firmware"	-	-	Affected	in	Belden Search vendor "Belden"	Eagle 20 Tofino 943 987-505-mm\/mm Search vendor "Belden" for product "Eagle 20 Tofino 943 987-505-mm\/mm"	-	-	Safe
Belden Search vendor "Belden"	Eagle 20 Tofino 943 987-504-mm\/tx Firmware Search vendor "Belden" for product "Eagle 20 Tofino 943 987-504-mm\/tx Firmware"	-	-	Affected	in	Belden Search vendor "Belden"	Eagle 20 Tofino 943 987-504-mm\/tx Search vendor "Belden" for product "Eagle 20 Tofino 943 987-504-mm\/tx"	-	-	Safe
Belden Search vendor "Belden"	Eagle 20 Tofino 943 987-502 -tx\/mm Firmware Search vendor "Belden" for product "Eagle 20 Tofino 943 987-502 -tx\/mm Firmware"	-	-	Affected	in	Belden Search vendor "Belden"	Eagle 20 Tofino 943 987-502 -tx\/mm Search vendor "Belden" for product "Eagle 20 Tofino 943 987-502 -tx\/mm"	-	-	Safe
Belden Search vendor "Belden"	Eagle 20 Tofino 943 987-501-tx\/tx Firmware Search vendor "Belden" for product "Eagle 20 Tofino 943 987-501-tx\/tx Firmware"	-	-	Affected	in	Belden Search vendor "Belden"	Eagle 20 Tofino 943 987-501-tx\/tx Search vendor "Belden" for product "Eagle 20 Tofino 943 987-501-tx\/tx"	-	-	Safe
Schneider-electric Search vendor "Schneider-electric"	Tcsefea23f3f20 Firmware Search vendor "Schneider-electric" for product "Tcsefea23f3f20 Firmware"	-	-	Affected	in	Schneider-electric Search vendor "Schneider-electric"	Tcsefea23f3f20 Search vendor "Schneider-electric" for product "Tcsefea23f3f20"	-	-	Safe
Schneider-electric Search vendor "Schneider-electric"	Tcsefea23f3f21 Firmware Search vendor "Schneider-electric" for product "Tcsefea23f3f21 Firmware"	-	-	Affected	in	Schneider-electric Search vendor "Schneider-electric"	Tcsefea23f3f21 Search vendor "Schneider-electric" for product "Tcsefea23f3f21"	-	-	Safe
Schneider-electric Search vendor "Schneider-electric"	Tcsefea23f3f22 Firmware Search vendor "Schneider-electric" for product "Tcsefea23f3f22 Firmware"	< 03.23 Search vendor "Schneider-electric" for product "Tcsefea23f3f22 Firmware" and version " < 03.23"	-	Affected	in	Schneider-electric Search vendor "Schneider-electric"	Tcsefea23f3f22 Search vendor "Schneider-electric" for product "Tcsefea23f3f22"	-	-	Safe