Lucene search
IcscertCVELIST:CVE-2021-22642HistoryJul 28, 2022 - 2:17 p.m.
CVE-2021-22642 Ovarro TBox Uncontrolled Resource Consumption
2022-07-2814:17:44
icscert
www.cve.org
3
cve-2021-22642
ovarro tbox
resource consumption
invalid modbus frames
attack
system crash
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
36.6%
An attacker could use specially crafted invalid Modbus frames to crash the Ovarro TBox system.
CNA Affected
[
{
"product": "TBox",
"vendor": "Ovarro",
"versions": [
{
"status": "affected",
"version": "LT2"
},
{
"status": "affected",
"version": "MS-CPU32"
},
{
"status": "affected",
"version": "MS-CPU32-S2"
},
{
"status": "affected",
"version": "RM2"
},
{
"status": "affected",
"version": "TG2"
}
]
}
]Related
prion
prion
Code injection
2022-07-28 15:15:00
cve
cve
CVE-2021-22642
2022-07-28 15:15:07
nvd
nvd
CVE-2021-22642
2022-07-28 15:15:07
thn
thn
Flaws in Ovarro TBox RTUs Could Open Industrial Systems to Remote Attacks
2021-03-29 15:28:00
ics
ics
Ovarro TBox (Update A)
2021-09-23 12:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
36.6%
Related for CVELIST:CVE-2021-22642