A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. When a message is sent to the HMI TCP socket, it is forwarded to the hmiProcessMsg function through the pendingQ, and may lead to remote code execution.
CPE | Name | Operator | Version |
---|---|---|---|
hmi-3_control_panel_firmware | lt | 7.2.5.7 |
www.armis.com/PwnedPiper
www.swisslog-healthcare.com
www.swisslog-healthcare.com/-/media/swisslog-healthcare/documents/customer-service/armis-documents/cve-2021-37165-bulletin---overflow-in-hmiprocessmsg.pdf?rev=2e2678dab62b41ba999cd6d1e03974ca&hash=F465ACE2C7FAED826B52FE996E36ACEC
www.swisslog-healthcare.com/en-us/customer-care/security-information/cve-disclosures