Vulnerabilities > CVE-2021-27391 - Unspecified vulnerability in Siemens products

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

siemens

critical

NVD

Published: 2021-09-14

Updated: 2024-11-21

Summary

A vulnerability has been identified in APOGEE MBC (PPC) (P2 Ethernet) (All versions >= V2.6.3), APOGEE MEC (PPC) (P2 Ethernet) (All versions >= V2.6.3), APOGEE PXC Compact (BACnet) (All versions < V3.5.3), APOGEE PXC Compact (P2 Ethernet) (All versions >= V2.8), APOGEE PXC Modular (BACnet) (All versions < V3.5.3), APOGEE PXC Modular (P2 Ethernet) (All versions >= V2.8), TALON TC Compact (BACnet) (All versions < V3.5.3), TALON TC Modular (BACnet) (All versions < V3.5.3). The web server of affected devices lacks proper bounds checking when parsing the Host parameter in HTTP requests, which could lead to a buffer overflow. An unauthenticated remote attacker could exploit this vulnerability to execute arbitrary code on the device with root privileges.

Vulnerable Configurations

Part	Description	Count
OS	Siemens Siemens Apogee MBC (Ppc) (P2 Ethernet) Firmware * Siemens Apogee MEC (Ppc) (P2 Ethernet) Firmware * Siemens Apogee PXC Bacnet Automation Controller Firmware - Siemens Apogee PXC Bacnet Automation Controller Firmware 3.5 Siemens Apogee PXC Compact (P2 Ethernet) Firmware * Siemens Apogee PXC Modular (Bacnet) Firmware * Siemens Apogee PXC Modular (P2 Ethernet) Firmware * Siemens Talon TC Compact (Bacnet) Firmware * Siemens Talon TC Modular (Bacnet) Firmware -	9
Hardware	Siemens Siemens Apogee MBC (Ppc) (P2 Ethernet) * Siemens Apogee MEC (Ppc) (P2 Ethernet) * Siemens Apogee PXC Bacnet Automation Controller - Siemens Apogee PXC Compact (P2 Ethernet) * Siemens Apogee PXC Modular (Bacnet) * Siemens Apogee PXC Modular (P2 Ethernet) * Siemens Talon TC Compact (Bacnet) * Siemens Talon TC Modular (Bacnet) *	8

Summary

Vulnerable Configurations

References