Race Condition Vulnerability in Phoenix Contact FL SWITCH SMCS series products
CVE-2021-21005

7.5HIGH

Key Information:

Vendor
Phoenix Contact
Status
Fl Switch
Fl Nat
Vendor
CVE Published:
25 June 2021

Summary

In Phoenix Contact FL SWITCH SMCS series products in multiple versions if an attacker sends a hand-crafted TCP-Packet with the Urgent-Flag set and the Urgent-Pointer set to 0, the network stack will crash. The device needs to be rebooted afterwards.

Affected Version(s)

FL NAT SMN 8TX (2989365) <= 4.63

FL NAT SMN 8TX-M (2702443) <= 4.63

FL SWITCH SMCS 16TX (2700996) <= 4.70

References

https://cert.vde.com/en-us/advisories/vde-2021-023
x_refsource_CONFIRM

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

This vulnerability has been discovered and reported by Anne Borcherding, Fraunhofer- Institut fĂĽr Optronik, Systemtechnik und Bildauswertung IOSB. PHOENIX CONTACT thanks CERT@VDE for the coordination and support with this publication.
.
CVE-2021-21005 : Race Condition Vulnerability in Phoenix Contact FL SWITCH SMCS series products | SecurityVulnerability.io