Denial of Service Vulnerability in Schneider Electric ConneXium Tofino and Belden Tofino Xenon Security Appliance
CVE-2021-30063

7.5HIGH

Key Information:

Vendor

Belden

Status
Tofino Xenon Security Appliance Firmware
Vendor
CVE Published:
3 April 2022

What is CVE-2021-30063?

An issue exists in Schneider Electric's ConneXium Tofino OPCLSM TCSEFM0000 prior to version 03.23 and Belden’s Tofino Xenon Security Appliance, where specially crafted OPC packets can lead to a denial of service condition. This vulnerability may allow an attacker to disrupt the normal operating functions of the affected devices, potentially impacting system availability and operations.

References

https://www.belden.com/support/security-assurance
x_refsource_MISC
https://download.schneider-electric.com/files?p_Doc_Ref=S...
x_refsource_CONFIRM

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.