HIGH🇬🇧 English

CVE-2022-38371

CVSS 8.7v4.0pub. 2022-10-11upd. 2025-04-08

A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versions < V3.5.7), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.21), APOGEE PXC Modular (BACnet) (All versions < V3.5.7), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.21), Desigo PXC00-E.D (All versions >= V2.3 < V6.30.37), Desigo PXC00-U (All versions >= V2.3 < V6.30.37), Desigo PXC001-E.D (All versions >= V2.3 < V6.30.37), Desigo PXC100-E.D (All versions >= V2.3 < V6.30.37), Desigo PXC12-E.D (All versions >= V2.3 < V6.30.37), Desigo PXC128-U (All versions >= V2.3 < V6.30.37), Desigo PXC200-E.D (All versions >= V2.3 < V6.30.37), Desigo PXC22-E.D (All versions >= V2.3 < V6.30.37), Desigo PXC22.1-E.D (All versions >= V2.3 < V6.30.37), Desigo PXC36.1-E.D (All versions >= V2.3 < V6.30.37), Desigo PXC50-E.D (All versions >= V2.3 < V6.30.37), Desigo PXC64-U (All versions >= V2.3 < V6.30.37), Desigo PXM20-E (All versions >= V2.3 < V6.30.37), Nucleus NET for Nucleus PLUS V1 (All versions < V5.2a), Nucleus NET for Nucleus PLUS V2 (All versions < V5.4), Nucleus ReadyStart V3 V2012 (All versions < V2012.08.1), Nucleus ReadyStart V3 V2017 (All versions < V2017.02.4), Nucleus Source Code (All versions including affected FTP server), TALON TC Compact (BACnet) (All versions < V3.5.7), TALON TC Modular (BACnet) (All versions < V3.5.7). The FTP server does not properly release memory resources that were reserved for incomplete connection attempts by FTP clients. This could allow a remote attacker to generate a denial of service condition on devices that incorporate a vulnerable version of the FTP server.

oryginał EN
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Siemens Apogee Modular Building Controller

    HW
    Siemens
    wszystkie wersje
  • Siemens Apogee Modular Building Controller Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Apogee Modular Equiment Controller

    HW
    Siemens
    wszystkie wersje
  • Siemens Apogee Modular Equiment Controller Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Apogee Pxc Compact

    HW
    Siemens
    wszystkie wersje
  • Siemens Apogee Pxc Compact Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Apogee Pxc Modular

    HW
    Siemens
    wszystkie wersje
  • Siemens Apogee Pxc Modular Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Desigo Pxc001 E.d

    HW
    Siemens
    wszystkie wersje
  • Siemens Desigo Pxc001 E.d Firmware

    OS
    Siemens
    ≤ 2.3
  • Siemens Desigo Pxc00 E.d

    HW
    Siemens
    wszystkie wersje
  • Siemens Desigo Pxc00 E.d Firmware

    OS
    Siemens
    ≤ 2.3
  • Siemens Desigo Pxc00 U

    HW
    Siemens
    wszystkie wersje
  • Siemens Desigo Pxc00 U Firmware

    OS
    Siemens
    ≤ 2.3
  • Siemens Desigo Pxc100 E.d

    HW
    Siemens
    wszystkie wersje
  • Siemens Desigo Pxc100 E.d Firmware

    OS
    Siemens
    ≤ 2.3
  • Siemens Desigo Pxc128 U

    HW
    Siemens
    wszystkie wersje
  • Siemens Desigo Pxc128 U Firmware

    OS
    Siemens
    ≤ 2.3
  • Siemens Desigo Pxc12 E.d

    HW
    Siemens
    wszystkie wersje
  • Siemens Desigo Pxc12 E.d Firmware

    OS
    Siemens
    ≤ 2.3
  • Siemens Desigo Pxc200 E.d

    HW
    Siemens
    wszystkie wersje
  • Siemens Desigo Pxc200 E.d Firmware

    OS
    Siemens
    ≤ 2.3
  • Siemens Desigo Pxc22.1 E.d

    HW
    Siemens
    wszystkie wersje
  • Siemens Desigo Pxc22.1 E.d Firmware

    OS
    Siemens
    ≤ 2.3
  • Siemens Desigo Pxc22 E.d

    HW
    Siemens
    wszystkie wersje
  • Siemens Desigo Pxc22 E.d Firmware

    OS
    Siemens
    ≤ 2.3
  • Siemens Desigo Pxc36.1 E.d

    HW
    Siemens
    wszystkie wersje
  • Siemens Desigo Pxc36.1 E.d Firmware

    OS
    Siemens
    ≤ 2.3
  • Siemens Desigo Pxc50 E.d

    HW
    Siemens
    wszystkie wersje
  • Siemens Desigo Pxc50 E.d Firmware

    OS
    Siemens
    ≤ 2.3
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
DoS
CWE
Referencje

Powiązane podatności

CVE-2021-31886CRITICAL9.8ten sam produkt

A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet...

CVE-2021-31884CRITICAL9.8ten sam produkt

A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet...

CVE-2021-31883HIGH7.1ten sam produkt

A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR...

CVE-2021-31346HIGH8.2ten sam produkt

A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR...

CVE-2021-31345HIGH7.5ten sam produkt

A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR...