Versio.io

CVE-2021-41769

Common vulnerabilities & exposures (CVE)

CVE databaseCVE database blogpostRelease & EoL database
 
Published at: - 11-01-2022 01:15
Last modified: - 19-01-2022 05:49
Total changes: - 2

Description

A vulnerability has been identified in SIPROTEC 5 6MD85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 6MD86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 6MD89 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 6MU85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7KE85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SA82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SA86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SA87 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SD82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SD86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SD87 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SJ81 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SJ82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SJ85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SJ86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SK82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SK85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SL82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SL86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SL87 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SS85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7ST85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SX85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7UM85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7UT82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7UT85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7UT86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7UT87 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7VE85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7VK87 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 Compact 7SX800 devices (CPU variant CP050) (All versions < V8.83). An improper input validation vulnerability in the web server could allow an unauthenticated user to access device information.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Low
Attack complexity
Network
Attack vector
None
Availability
High
Confidentiality
None
Integrity
None
Privileges required
Unchanged
Scope
None
User interaction
7.5
Base score
3.9
3.6
Exploitability score
Impact score
 

Verification logic

OR
AND
OR
vendor=siemens AND product=6md85_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=6md85 AND version=-
AND
OR
vendor=siemens AND product=6md86_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=6md86 AND version=-
AND
OR
vendor=siemens AND product=6md89_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=6md89 AND version=-
AND
OR
vendor=siemens AND product=6mu85_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=6mu85 AND version=-
AND
OR
vendor=siemens AND product=7ke85_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7ke85 AND version=-
AND
OR
vendor=siemens AND product=7sa82_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sa82 AND version=-
AND
OR
vendor=siemens AND product=7sa86_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sa86 AND version=-
AND
OR
vendor=siemens AND product=7sa87_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sa87 AND version=-
AND
OR
vendor=siemens AND product=7sd82_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sd82 AND version=-
AND
OR
vendor=siemens AND product=7sd86_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sd86 AND version=-
AND
OR
vendor=siemens AND product=7sd87_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sd87 AND version=-
AND
OR
vendor=siemens AND product=7sj81_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sj81 AND version=-
AND
OR
vendor=siemens AND product=7sj82_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sj82 AND version=-
AND
OR
vendor=siemens AND product=7sj85_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sj85 AND version=-
AND
OR
vendor=siemens AND product=7sj86_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sj86 AND version=-
AND
OR
vendor=siemens AND product=7sk82_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sk82 AND version=-
AND
OR
vendor=siemens AND product=7sk85_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sk85 AND version=-
AND
OR
vendor=siemens AND product=7sl82_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sl82 AND version=-
AND
OR
vendor=siemens AND product=7sl86_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sl86 AND version=-
AND
OR
vendor=siemens AND product=7sl87_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sl87 AND version=-
AND
OR
vendor=siemens AND product=7ss85_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7ss85 AND version=-
AND
OR
vendor=siemens AND product=7st85_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7st85 AND version=-
AND
OR
vendor=siemens AND product=7sx800_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sx800 AND version=-
AND
OR
vendor=siemens AND product=7sx85_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7sx85 AND version=-
AND
OR
vendor=siemens AND product=7um85_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7um85 AND version=-
AND
OR
vendor=siemens AND product=7ut82_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7ut82 AND version=-
AND
OR
vendor=siemens AND product=7ut85_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7ut85 AND version=-
AND
OR
vendor=siemens AND product=7ut86_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7ut86 AND version=-
AND
OR
vendor=siemens AND product=7ut87_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7ut87 AND version=-
AND
OR
vendor=siemens AND product=7ve85_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7ve85 AND version=-
AND
OR
vendor=siemens AND product=7vk87_firmware AND versionEndExcluding=8.83
OR
vendor=siemens AND product=7vk87 AND version=-
 

Reference

 


Keywords

NVD

 

CVE-2021-41769

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures

 

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.