CVE-2021-33737
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability has been identified in SIMATIC CP 343-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 ERPC (All versions), SIMATIC CP 343-1 Lean (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 (All versions < V3.3), SIMATIC CP 443-1 (All versions < V3.3), SIMATIC CP 443-1 Advanced (All versions < V3.3), SIPLUS NET CP 443-1 (All versions < V3.3), SIPLUS NET CP 443-1 Advanced (All versions < V3.3). Sending a specially crafted packet to port 102/tcp of an affected device could cause a denial of service condition. A restart is needed to restore normal operations.
Se ha identificado una vulnerabilidad en SIMATIC CP 343-1 (incl. variantes SIPLUS) (Todas las versiones), SIMATIC CP 343-1 Advanced (incl. variantes SIPLUS) (Todas las versiones), SIMATIC CP 343-1 ERPC (Todas las versiones), SIMATIC CP 343-1 Lean (incl. variantes SIPLUS) SIPLUS) (Todas las versiones), SIMATIC CP 443-1 (incl. variantes SIPLUS) (Todas las versiones), SIMATIC CP 443-1 Advanced (Todas las versiones), SIMATIC CP 443-1 Advanced (incl. variantes SIPLUS) (Todas las versiones), SIPLUS NET CP 443-1 Advanced (Todas las versiones). El envío de un paquete especialmente diseñado al puerto 102/tcp de un dispositivo afectado podría causar una condición de denegación de servicio. Se necesita un reinicio para restaurar las operaciones normales
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-05-28 CVE Reserved
- 2021-09-14 CVE Published
- 2024-05-30 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://cert-portal.siemens.com/productcert/pdf/ssa-549234.pdf | 2023-04-11 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Siemens Search vendor "Siemens" | Simatic Cp 343-1 Firmware Search vendor "Siemens" for product "Simatic Cp 343-1 Firmware" | * | - |
Affected
| in | Siemens Search vendor "Siemens" | Simatic Cp343-1 Search vendor "Siemens" for product "Simatic Cp343-1" | - | - |
Safe
|
| Siemens Search vendor "Siemens" | Simatic Cp 343-1 Advanced Firmware Search vendor "Siemens" for product "Simatic Cp 343-1 Advanced Firmware" | * | - |
Affected
| in | Siemens Search vendor "Siemens" | Simatic Cp343-1 Advanced Search vendor "Siemens" for product "Simatic Cp343-1 Advanced" | - | - |
Safe
|
| Siemens Search vendor "Siemens" | Simatic Cp 343-1 Erpc Firmware Search vendor "Siemens" for product "Simatic Cp 343-1 Erpc Firmware" | * | - |
Affected
| in | Siemens Search vendor "Siemens" | Simatic Cp 343-1 Erpc Search vendor "Siemens" for product "Simatic Cp 343-1 Erpc" | * | - |
Safe
|
| Siemens Search vendor "Siemens" | Simatic Cp 343-1 Lean Firmware Search vendor "Siemens" for product "Simatic Cp 343-1 Lean Firmware" | * | - |
Affected
| in | Siemens Search vendor "Siemens" | Simatic Cp 343-1 Lean Search vendor "Siemens" for product "Simatic Cp 343-1 Lean" | * | - |
Safe
|
| Siemens Search vendor "Siemens" | Simatic Cp 443-1 Firmware Search vendor "Siemens" for product "Simatic Cp 443-1 Firmware" | * | - |
Affected
| in | Siemens Search vendor "Siemens" | Simatic Cp 443-1 Search vendor "Siemens" for product "Simatic Cp 443-1" | * | - |
Safe
|
| Siemens Search vendor "Siemens" | Simatic Cp 443-1 Advanced Firmware Search vendor "Siemens" for product "Simatic Cp 443-1 Advanced Firmware" | * | - |
Affected
| in | Siemens Search vendor "Siemens" | Simatic Cp 443-1 Advanced Search vendor "Siemens" for product "Simatic Cp 443-1 Advanced" | * | - |
Safe
|