Multiple vulnerabilities in Fuji Electric Tellus Lite V-Simulator and V-Server Lite
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 5 |
| CVE-ID | CVE-2021-22637 CVE-2021-22655 CVE-2021-22653 CVE-2021-22639 CVE-2021-22641 |
| CWE-ID | CWE-121 CWE-125 CWE-787 CWE-824 CWE-122 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software Subscribe |
Tellus Lite V-Simulator Server applications / Other server solutions V-Server Lite Server applications / Web servers |
| Vendor |
Security Bulletin
This security bulletin contains information about 5 vulnerabilities.
Updated: 29.01.2021
Updated descriptions and links for vulnerabilities #1,4,5.
1) Stack-based buffer overflow
EUVDB-ID: #VU50090
Risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2021-22637
CWE-ID:
CWE-121 - Stack-based buffer overflow
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when processing VPR files. A remote unauthenticated attacker can trigger stack-based buffer overflow and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsTellus Lite V-Simulator: before 4.0.10.0
V-Server Lite: before 4.0.10.0
External linkshttp://us-cert.cisa.gov/ics/advisories/icsa-21-026-01
http://www.zerodayinitiative.com/advisories/ZDI-21-097/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Out-of-bounds read
EUVDB-ID: #VU50091
Risk: Medium
CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2021-22655
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition when processing project files. A remote attacker can trigger out-of-bounds read error and read contents of memory on the system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsTellus Lite V-Simulator: before 4.0.10.0
V-Server Lite: before 4.0.10.0
External linkshttp://us-cert.cisa.gov/ics/advisories/icsa-21-026-01
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Out-of-bounds write
EUVDB-ID: #VU50092
Risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2021-22653
CWE-ID:
CWE-787 - Out-of-bounds write
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a boundary error when processing untrusted input when processing project files. A remote attacker can trigger out-of-bounds write and execute arbitrary code on the target system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsTellus Lite V-Simulator: before 4.0.10.0
V-Server Lite: before 4.0.10.0
External linkshttp://us-cert.cisa.gov/ics/advisories/icsa-21-026-01
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Access of Uninitialized Pointer
EUVDB-ID: #VU50093
Risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2021-22639
CWE-ID:
CWE-824 - Access of Uninitialized Pointer
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to an uninitialized pointer issue when processing VPR files. A remote attacker can use a specially crafted project file and execute arbitrary code on the target system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsTellus Lite V-Simulator: before 4.0.10.0
V-Server Lite: before 4.0.10.0
External linkshttp://us-cert.cisa.gov/ics/advisories/icsa-21-026-01
http://www.zerodayinitiative.com/advisories/ZDI-21-098/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Heap-based buffer overflow
EUVDB-ID: #VU50094
Risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2021-22641
CWE-ID:
CWE-122 - Heap-based Buffer Overflow
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when processing VPR files. A remote attacker can trigger heap-based buffer overflow and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationInstall update from vendor's website.
Vulnerable software versionsTellus Lite V-Simulator: before 4.0.10.0
V-Server Lite: before 4.0.10.0
External linkshttp://us-cert.cisa.gov/ics/advisories/icsa-21-026-01
http://www.zerodayinitiative.com/advisories/ZDI-21-099/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
