Improper Null Termination in Siemens products - CVE-2021-31886

 

Improper Null Termination in Siemens products - CVE-2021-31886

Published: November 10, 2021


Vulnerability identifier: #VU58086
CSH Severity: High
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber
CVE-ID: CVE-2021-31886
CWE-ID: CWE-170
Exploitation vector: Remote access
Exploit availability: No public exploit available
Vendor: Siemens
Affected software:
Nucleus NET
Nucleus Source Code
Capital VSTAR
Nucleus ReadyStart

Detailed vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code on the system.

The vulnerability exists due to improper null termination when the FTP server does not properly validate the length of the “USER” command. A remote attacker can execute arbitrary code on the target system.


How to mitigate CVE-2021-31886

Install updates from vendor's website.

Sources