CVE-2021-42018 - Vulnerability Details

A vulnerability has been identified in RUGGEDCOM i800, RUGGEDCOM i800NC, RUGGEDCOM i801, RUGGEDCOM i801NC, RUGGEDCOM i802, RUGGEDCOM i802NC, RUGGEDCOM i803, RUGGEDCOM i803NC, RUGGEDCOM M2100, RUGGEDCOM M2100F, RUGGEDCOM M2100NC, RUGGEDCOM M2200, RUGGEDCOM M2200F, RUGGEDCOM M2200NC, RUGGEDCOM M969, RUGGEDCOM M969F, RUGGEDCOM M969NC, RUGGEDCOM RMC30, RUGGEDCOM RMC30NC, RUGGEDCOM RMC8388 V4.X, RUGGEDCOM RMC8388 V5.X, RUGGEDCOM RMC8388NC V4.X, RUGGEDCOM RMC8388NC V5.X, RUGGEDCOM RP110, RUGGEDCOM RP110NC, RUGGEDCOM RS1600, RUGGEDCOM RS1600F, RUGGEDCOM RS1600FNC, RUGGEDCOM RS1600NC, RUGGEDCOM RS1600T, RUGGEDCOM RS1600TNC, RUGGEDCOM RS400, RUGGEDCOM RS400F, RUGGEDCOM RS400NC, RUGGEDCOM RS401, RUGGEDCOM RS401NC, RUGGEDCOM RS416, RUGGEDCOM RS416F, RUGGEDCOM RS416NC, RUGGEDCOM RS416NCv2 V4.X, RUGGEDCOM RS416NCv2 V5.X, RUGGEDCOM RS416P, RUGGEDCOM RS416PF, RUGGEDCOM RS416PNC, RUGGEDCOM RS416PNCv2 V4.X, RUGGEDCOM RS416PNCv2 V5.X, RUGGEDCOM RS416Pv2 V4.X, RUGGEDCOM RS416Pv2 V5.X, RUGGEDCOM RS416v2 V4.X, RUGGEDCOM RS416v2 V5.X, RUGGEDCOM RS8000, RUGGEDCOM RS8000A, RUGGEDCOM RS8000ANC, RUGGEDCOM RS8000H, RUGGEDCOM RS8000HNC, RUGGEDCOM RS8000NC, RUGGEDCOM RS8000T, RUGGEDCOM RS8000TNC, RUGGEDCOM RS900, RUGGEDCOM RS900 (32M) V4.X, RUGGEDCOM RS900 (32M) V5.X, RUGGEDCOM RS900F, RUGGEDCOM RS900G, RUGGEDCOM RS900G (32M) V4.X, RUGGEDCOM RS900G (32M) V5.X, RUGGEDCOM RS900GF, RUGGEDCOM RS900GNC, RUGGEDCOM RS900GNC(32M) V4.X, RUGGEDCOM RS900GNC(32M) V5.X, RUGGEDCOM RS900GP, RUGGEDCOM RS900GPF, RUGGEDCOM RS900GPNC, RUGGEDCOM RS900L, RUGGEDCOM RS900LNC, RUGGEDCOM RS900M-GETS-C01, RUGGEDCOM RS900M-GETS-XX, RUGGEDCOM RS900M-STND-C01, RUGGEDCOM RS900M-STND-XX, RUGGEDCOM RS900MNC-GETS-C01, RUGGEDCOM RS900MNC-GETS-XX, RUGGEDCOM RS900MNC-STND-XX, RUGGEDCOM RS900MNC-STND-XX-C01, RUGGEDCOM RS900NC, RUGGEDCOM RS900NC(32M) V4.X, RUGGEDCOM RS900NC(32M) V5.X, RUGGEDCOM RS900W, RUGGEDCOM RS910, RUGGEDCOM RS910L, RUGGEDCOM RS910LNC, RUGGEDCOM RS910NC, RUGGEDCOM RS910W, RUGGEDCOM RS920L, RUGGEDCOM RS920LNC, RUGGEDCOM RS920W, RUGGEDCOM RS930L, RUGGEDCOM RS930LNC, RUGGEDCOM RS930W, RUGGEDCOM RS940G, RUGGEDCOM RS940GF, RUGGEDCOM RS940GNC, RUGGEDCOM RS969, RUGGEDCOM RS969NC, RUGGEDCOM RSG2100, RUGGEDCOM RSG2100 (32M) V4.X, RUGGEDCOM RSG2100 (32M) V5.X, RUGGEDCOM RSG2100F, RUGGEDCOM RSG2100NC, RUGGEDCOM RSG2100NC(32M) V4.X, RUGGEDCOM RSG2100NC(32M) V5.X, RUGGEDCOM RSG2100P, RUGGEDCOM RSG2100P (32M) V4.X, RUGGEDCOM RSG2100P (32M) V5.X, RUGGEDCOM RSG2100PF, RUGGEDCOM RSG2100PNC, RUGGEDCOM RSG2100PNC (32M) V4.X, RUGGEDCOM RSG2100PNC (32M) V5.X, RUGGEDCOM RSG2200, RUGGEDCOM RSG2200F, RUGGEDCOM RSG2200NC, RUGGEDCOM RSG2288 V4.X, RUGGEDCOM RSG2288 V5.X, RUGGEDCOM RSG2288NC V4.X, RUGGEDCOM RSG2288NC V5.X, RUGGEDCOM RSG2300 V4.X, RUGGEDCOM RSG2300 V5.X, RUGGEDCOM RSG2300F, RUGGEDCOM RSG2300NC V4.X, RUGGEDCOM RSG2300NC V5.X, RUGGEDCOM RSG2300P V4.X, RUGGEDCOM RSG2300P V5.X, RUGGEDCOM RSG2300PF, RUGGEDCOM RSG2300PNC V4.X, RUGGEDCOM RSG2300PNC V5.X, RUGGEDCOM RSG2488 V4.X, RUGGEDCOM RSG2488 V5.X, RUGGEDCOM RSG2488F, RUGGEDCOM RSG2488NC V4.X, RUGGEDCOM RSG2488NC V5.X, RUGGEDCOM RSG907R, RUGGEDCOM RSG908C, RUGGEDCOM RSG909R, RUGGEDCOM RSG910C, RUGGEDCOM RSG920P V4.X, RUGGEDCOM RSG920P V5.X, RUGGEDCOM RSG920PNC V4.X, RUGGEDCOM RSG920PNC V5.X, RUGGEDCOM RSL910, RUGGEDCOM RSL910NC, RUGGEDCOM RST2228, RUGGEDCOM RST2228P, RUGGEDCOM RST916C, RUGGEDCOM RST916P. Within a third-party component, whenever memory allocation is requested, the out of bound size is not checked.

Therefore, if size exceeding the expected allocation is assigned, it could allocate a smaller buffer instead. If an attacker were to exploit this, they could cause a heap overflow.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.006.

Exploitation none

Automatable no

Technical Impact partial

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Siemens

RUGGEDCOM i800

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM i800NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM i801

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM i801NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM i802

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM i802NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM i803

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM i803NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM M2100

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM M2100F

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM M2100NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM M2200

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM M2200F

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM M2200NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM M969

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM M969F

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM M969NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RMC30

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RMC30NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RMC8388 V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RMC8388 V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RMC8388NC V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RMC8388NC V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RP110

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RP110NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS1600

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS1600F

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS1600FNC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS1600NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS1600T

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS1600TNC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS400

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS400F

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM RS400NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS401

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS401NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS416

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS416F

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM RS416NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS416NCv2 V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS416NCv2 V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RS416P

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS416PF

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM RS416PNC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS416PNCv2 V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS416PNCv2 V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RS416Pv2 V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS416Pv2 V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RS416v2 V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS416v2 V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RS8000

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS8000A

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS8000ANC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS8000H

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS8000HNC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS8000NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS8000T

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS8000TNC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900 (32M) V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900 (32M) V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RS900F

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM RS900G

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900G (32M) V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900G (32M) V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RS900GF

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM RS900GNC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900GNC(32M) V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900GNC(32M) V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RS900GP

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900GPF

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM RS900GPNC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900L

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900LNC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900M-GETS-C01

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900M-GETS-XX

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900M-STND-C01

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900M-STND-XX

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900MNC-GETS-C01

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900MNC-GETS-XX

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900MNC-STND-XX

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900MNC-STND-XX-C01

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900NC(32M) V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS900NC(32M) V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RS900W

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS910

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS910L

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS910LNC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS910NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS910W

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS920L

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS920LNC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS920W

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS930L

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS930LNC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS930W

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS940G

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS940GF

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM RS940GNC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS969

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RS969NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2100

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2100 (32M) V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2100 (32M) V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG2100F

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM RSG2100NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2100NC(32M) V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2100NC(32M) V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG2100P

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2100P (32M) V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2100P (32M) V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG2100PF

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM RSG2100PNC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2100PNC (32M) V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2100PNC (32M) V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG2200

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2200F

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM RSG2200NC

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2288 V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2288 V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG2288NC V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2288NC V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG2300 V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2300 V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG2300F

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM RSG2300NC V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2300NC V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG2300P V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2300P V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG2300PF

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM RSG2300PNC V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2300PNC V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG2488 V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2488 V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG2488F

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

RUGGEDCOM RSG2488NC V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG2488NC V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG907R

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG908C

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG909R

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG910C

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG920P V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG920P V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSG920PNC V4.X

unknown

Version	Status	Constraints
`0`	affected	< V4.3.8

Siemens

RUGGEDCOM RSG920PNC V5.X

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSL910

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RSL910NC

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RST2228

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RST2228P

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RST916C

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Siemens

RUGGEDCOM RST916P

unknown

Version	Status	Constraints
`0`	affected	< V5.6.0

Configuration 1 [-]

AND

cpe:2.3:o:siemens:ruggedcom_ros:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:siemens:ruggedcom_i800:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_i801:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_i802:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_i803:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_m2100:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_m2200:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_m969:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rmc:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rmc20:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rmc30:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rmc40:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rmc41:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rp110:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs400:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs401:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs416:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs8000:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs8000a:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs8000h:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs8000t:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs900gp:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs900l:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs900w:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs910:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs910l:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs910w:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs920l:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs920w:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs930l:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs930w:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs940g:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs969:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rsg2100p:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rsg2200:-:::::::*

Configuration 2 [-]

AND

cpe:2.3:o:siemens:ruggedcom_ros:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:siemens:ruggedcom_rmc8388:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs416v2:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs900:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rs900g:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rsg2100:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rsg2288:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rsg2300:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rsg2300p:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rsg2488:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rsg907r:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rsg908c:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rsg909r:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rsg910c:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rsg920p:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rsl910:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rst2228:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rst2228p:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rst916c:-:::::::*
	cpe:2.3:h:siemens:ruggedcom_rst916p:-:::::::*

No data.

Project Subscriptions

Vendors	Products
Siemens Subscribe	Ruggedcom I800 Subscribe Ruggedcom I801 Subscribe Ruggedcom I802 Subscribe Ruggedcom I803 Subscribe Ruggedcom M2100 Subscribe Ruggedcom M2200 Subscribe Ruggedcom M969 Subscribe Ruggedcom Rmc Subscribe Ruggedcom Rmc20 Subscribe Ruggedcom Rmc30 Subscribe Ruggedcom Rmc40 Subscribe Ruggedcom Rmc41 Subscribe Ruggedcom Rmc8388 Subscribe Ruggedcom Ros Subscribe Ruggedcom Rp110 Subscribe Ruggedcom Rs400 Subscribe Ruggedcom Rs401 Subscribe Ruggedcom Rs416 Subscribe Ruggedcom Rs416v2 Subscribe Ruggedcom Rs8000 Subscribe Ruggedcom Rs8000a Subscribe Ruggedcom Rs8000h Subscribe Ruggedcom Rs8000t Subscribe Ruggedcom Rs900 Subscribe Ruggedcom Rs900g Subscribe Ruggedcom Rs900gp Subscribe Ruggedcom Rs900l Subscribe Ruggedcom Rs900w Subscribe Ruggedcom Rs910 Subscribe Ruggedcom Rs910l Subscribe Ruggedcom Rs910w Subscribe Ruggedcom Rs920l Subscribe Ruggedcom Rs920w Subscribe Ruggedcom Rs930l Subscribe Ruggedcom Rs930w Subscribe Ruggedcom Rs940g Subscribe Ruggedcom Rs969 Subscribe Ruggedcom Rsg2100 Subscribe Ruggedcom Rsg2100p Subscribe Ruggedcom Rsg2200 Subscribe Ruggedcom Rsg2288 Subscribe Ruggedcom Rsg2300 Subscribe Ruggedcom Rsg2300p Subscribe Ruggedcom Rsg2488 Subscribe Ruggedcom Rsg907r Subscribe Ruggedcom Rsg908c Subscribe Ruggedcom Rsg909r Subscribe Ruggedcom Rsg910c Subscribe Ruggedcom Rsg920p Subscribe Ruggedcom Rsl910 Subscribe Ruggedcom Rst2228 Subscribe Ruggedcom Rst2228p Subscribe Ruggedcom Rst916c Subscribe Ruggedcom Rst916p Subscribe

Advisories

Source	ID	Title
EUVD	EUVD-2021-29006	A vulnerability has been identified in RUGGEDCOM i800, RUGGEDCOM i800NC, RUGGEDCOM i801, RUGGEDCOM i801NC, RUGGEDCOM i802, RUGGEDCOM i802NC, RUGGEDCOM i803, RUGGEDCOM i803NC, RUGGEDCOM M2100, RUGGEDCOM M2100F, RUGGEDCOM M2100NC, RUGGEDCOM M2200, RUGGEDCOM M2200F, RUGGEDCOM M2200NC, RUGGEDCOM M969, RUGGEDCOM M969F, RUGGEDCOM M969NC, RUGGEDCOM RMC30, RUGGEDCOM RMC30NC, RUGGEDCOM RMC8388 V4.X, RUGGEDCOM RMC8388 V5.X, RUGGEDCOM RMC8388NC V4.X, RUGGEDCOM RMC8388NC V5.X, RUGGEDCOM RP110, RUGGEDCOM RP110NC, RUGGEDCOM RS1600, RUGGEDCOM RS1600F, RUGGEDCOM RS1600FNC, RUGGEDCOM RS1600NC, RUGGEDCOM RS1600T, RUGGEDCOM RS1600TNC, RUGGEDCOM RS400, RUGGEDCOM RS400F, RUGGEDCOM RS400NC, RUGGEDCOM RS401, RUGGEDCOM RS401NC, RUGGEDCOM RS416, RUGGEDCOM RS416F, RUGGEDCOM RS416NC, RUGGEDCOM RS416NCv2 V4.X, RUGGEDCOM RS416NCv2 V5.X, RUGGEDCOM RS416P, RUGGEDCOM RS416PF, RUGGEDCOM RS416PNC, RUGGEDCOM RS416PNCv2 V4.X, RUGGEDCOM RS416PNCv2 V5.X, RUGGEDCOM RS416Pv2 V4.X, RUGGEDCOM RS416Pv2 V5.X, RUGGEDCOM RS416v2 V4.X, RUGGEDCOM RS416v2 V5.X, RUGGEDCOM RS8000, RUGGEDCOM RS8000A, RUGGEDCOM RS8000ANC, RUGGEDCOM RS8000H, RUGGEDCOM RS8000HNC, RUGGEDCOM RS8000NC, RUGGEDCOM RS8000T, RUGGEDCOM RS8000TNC, RUGGEDCOM RS900, RUGGEDCOM RS900 (32M) V4.X, RUGGEDCOM RS900 (32M) V5.X, RUGGEDCOM RS900F, RUGGEDCOM RS900G, RUGGEDCOM RS900G (32M) V4.X, RUGGEDCOM RS900G (32M) V5.X, RUGGEDCOM RS900GF, RUGGEDCOM RS900GNC, RUGGEDCOM RS900GNC(32M) V4.X, RUGGEDCOM RS900GNC(32M) V5.X, RUGGEDCOM RS900GP, RUGGEDCOM RS900GPF, RUGGEDCOM RS900GPNC, RUGGEDCOM RS900L, RUGGEDCOM RS900LNC, RUGGEDCOM RS900M-GETS-C01, RUGGEDCOM RS900M-GETS-XX, RUGGEDCOM RS900M-STND-C01, RUGGEDCOM RS900M-STND-XX, RUGGEDCOM RS900MNC-GETS-C01, RUGGEDCOM RS900MNC-GETS-XX, RUGGEDCOM RS900MNC-STND-XX, RUGGEDCOM RS900MNC-STND-XX-C01, RUGGEDCOM RS900NC, RUGGEDCOM RS900NC(32M) V4.X, RUGGEDCOM RS900NC(32M) V5.X, RUGGEDCOM RS900W, RUGGEDCOM RS910, RUGGEDCOM RS910L, RUGGEDCOM RS910LNC, RUGGEDCOM RS910NC, RUGGEDCOM RS910W, RUGGEDCOM RS920L, RUGGEDCOM RS920LNC, RUGGEDCOM RS920W, RUGGEDCOM RS930L, RUGGEDCOM RS930LNC, RUGGEDCOM RS930W, RUGGEDCOM RS940G, RUGGEDCOM RS940GF, RUGGEDCOM RS940GNC, RUGGEDCOM RS969, RUGGEDCOM RS969NC, RUGGEDCOM RSG2100, RUGGEDCOM RSG2100 (32M) V4.X, RUGGEDCOM RSG2100 (32M) V5.X, RUGGEDCOM RSG2100F, RUGGEDCOM RSG2100NC, RUGGEDCOM RSG2100NC(32M) V4.X, RUGGEDCOM RSG2100NC(32M) V5.X, RUGGEDCOM RSG2100P, RUGGEDCOM RSG2100P (32M) V4.X, RUGGEDCOM RSG2100P (32M) V5.X, RUGGEDCOM RSG2100PF, RUGGEDCOM RSG2100PNC, RUGGEDCOM RSG2100PNC (32M) V4.X, RUGGEDCOM RSG2100PNC (32M) V5.X, RUGGEDCOM RSG2200, RUGGEDCOM RSG2200F, RUGGEDCOM RSG2200NC, RUGGEDCOM RSG2288 V4.X, RUGGEDCOM RSG2288 V5.X, RUGGEDCOM RSG2288NC V4.X, RUGGEDCOM RSG2288NC V5.X, RUGGEDCOM RSG2300 V4.X, RUGGEDCOM RSG2300 V5.X, RUGGEDCOM RSG2300F, RUGGEDCOM RSG2300NC V4.X, RUGGEDCOM RSG2300NC V5.X, RUGGEDCOM RSG2300P V4.X, RUGGEDCOM RSG2300P V5.X, RUGGEDCOM RSG2300PF, RUGGEDCOM RSG2300PNC V4.X, RUGGEDCOM RSG2300PNC V5.X, RUGGEDCOM RSG2488 V4.X, RUGGEDCOM RSG2488 V5.X, RUGGEDCOM RSG2488F, RUGGEDCOM RSG2488NC V4.X, RUGGEDCOM RSG2488NC V5.X, RUGGEDCOM RSG907R, RUGGEDCOM RSG908C, RUGGEDCOM RSG909R, RUGGEDCOM RSG910C, RUGGEDCOM RSG920P V4.X, RUGGEDCOM RSG920P V5.X, RUGGEDCOM RSG920PNC V4.X, RUGGEDCOM RSG920PNC V5.X, RUGGEDCOM RSL910, RUGGEDCOM RSL910NC, RUGGEDCOM RST2228, RUGGEDCOM RST2228P, RUGGEDCOM RST916C, RUGGEDCOM RST916P. Within a third-party component, whenever memory allocation is requested, the out of bound size is not checked. Therefore, if size exceeding the expected allocation is assigned, it could allocate a smaller buffer instead. If an attacker were to exploit this, they could cause a heap overflow.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://cert-portal.siemens.com/productcert/html/ssa-256353.html
https://cert-portal.siemens.com/productcert/pdf/ssa-256353.pdf

History

Tue, 12 Aug 2025 11:30:00 +0000

Type	Values Removed	Values Added
Description	A vulnerability has been identified in RUGGEDCOM i800, RUGGEDCOM i800NC, RUGGEDCOM i801, RUGGEDCOM i801NC, RUGGEDCOM i802, RUGGEDCOM i802NC, RUGGEDCOM i803, RUGGEDCOM i803NC, RUGGEDCOM M2100, RUGGEDCOM M2100F, RUGGEDCOM M2100NC, RUGGEDCOM M2200, RUGGEDCOM M2200F, RUGGEDCOM M2200NC, RUGGEDCOM M969, RUGGEDCOM M969F, RUGGEDCOM M969NC, RUGGEDCOM RMC30, RUGGEDCOM RMC30NC, RUGGEDCOM RMC8388 V4.X, RUGGEDCOM RMC8388 V5.X, RUGGEDCOM RMC8388NC V4.X, RUGGEDCOM RMC8388NC V5.X, RUGGEDCOM RP110, RUGGEDCOM RP110NC, RUGGEDCOM RS1600, RUGGEDCOM RS1600F, RUGGEDCOM RS1600FNC, RUGGEDCOM RS1600NC, RUGGEDCOM RS1600T, RUGGEDCOM RS1600TNC, RUGGEDCOM RS400, RUGGEDCOM RS400F, RUGGEDCOM RS400NC, RUGGEDCOM RS401, RUGGEDCOM RS401NC, RUGGEDCOM RS416, RUGGEDCOM RS416F, RUGGEDCOM RS416NC, RUGGEDCOM RS416NCv2 V4.X, RUGGEDCOM RS416NCv2 V5.X, RUGGEDCOM RS416P, RUGGEDCOM RS416PF, RUGGEDCOM RS416PNC, RUGGEDCOM RS416PNCv2 V4.X, RUGGEDCOM RS416PNCv2 V5.X, RUGGEDCOM RS416Pv2 V4.X, RUGGEDCOM RS416Pv2 V5.X, RUGGEDCOM RS416v2 V4.X, RUGGEDCOM RS416v2 V5.X, RUGGEDCOM RS8000, RUGGEDCOM RS8000A, RUGGEDCOM RS8000ANC, RUGGEDCOM RS8000H, RUGGEDCOM RS8000HNC, RUGGEDCOM RS8000NC, RUGGEDCOM RS8000T, RUGGEDCOM RS8000TNC, RUGGEDCOM RS900, RUGGEDCOM RS900 (32M) V4.X, RUGGEDCOM RS900 (32M) V5.X, RUGGEDCOM RS900F, RUGGEDCOM RS900G, RUGGEDCOM RS900G (32M) V4.X, RUGGEDCOM RS900G (32M) V5.X, RUGGEDCOM RS900GF, RUGGEDCOM RS900GNC, RUGGEDCOM RS900GNC(32M) V4.X, RUGGEDCOM RS900GNC(32M) V5.X, RUGGEDCOM RS900GP, RUGGEDCOM RS900GPF, RUGGEDCOM RS900GPNC, RUGGEDCOM RS900L, RUGGEDCOM RS900LNC, RUGGEDCOM RS900M-GETS-C01, RUGGEDCOM RS900M-GETS-XX, RUGGEDCOM RS900M-STND-C01, RUGGEDCOM RS900M-STND-XX, RUGGEDCOM RS900MNC-GETS-C01, RUGGEDCOM RS900MNC-GETS-XX, RUGGEDCOM RS900MNC-STND-XX, RUGGEDCOM RS900MNC-STND-XX-C01, RUGGEDCOM RS900NC, RUGGEDCOM RS900NC(32M) V4.X, RUGGEDCOM RS900NC(32M) V5.X, RUGGEDCOM RS900W, RUGGEDCOM RS910, RUGGEDCOM RS910L, RUGGEDCOM RS910LNC, RUGGEDCOM RS910NC, RUGGEDCOM RS910W, RUGGEDCOM RS920L, RUGGEDCOM RS920LNC, RUGGEDCOM RS920W, RUGGEDCOM RS930L, RUGGEDCOM RS930LNC, RUGGEDCOM RS930W, RUGGEDCOM RS940G, RUGGEDCOM RS940GF, RUGGEDCOM RS940GNC, RUGGEDCOM RS969, RUGGEDCOM RS969NC, RUGGEDCOM RSG2100, RUGGEDCOM RSG2100 (32M) V4.X, RUGGEDCOM RSG2100 (32M) V5.X, RUGGEDCOM RSG2100F, RUGGEDCOM RSG2100NC, RUGGEDCOM RSG2100NC(32M) V4.X, RUGGEDCOM RSG2100NC(32M) V5.X, RUGGEDCOM RSG2100P, RUGGEDCOM RSG2100PF, RUGGEDCOM RSG2100PNC, RUGGEDCOM RSG2200, RUGGEDCOM RSG2200F, RUGGEDCOM RSG2200NC, RUGGEDCOM RSG2288 V4.X, RUGGEDCOM RSG2288 V5.X, RUGGEDCOM RSG2288NC V4.X, RUGGEDCOM RSG2288NC V5.X, RUGGEDCOM RSG2300 V4.X, RUGGEDCOM RSG2300 V5.X, RUGGEDCOM RSG2300F, RUGGEDCOM RSG2300NC V4.X, RUGGEDCOM RSG2300NC V5.X, RUGGEDCOM RSG2300P V4.X, RUGGEDCOM RSG2300P V5.X, RUGGEDCOM RSG2300PF, RUGGEDCOM RSG2300PNC V4.X, RUGGEDCOM RSG2300PNC V5.X, RUGGEDCOM RSG2488 V4.X, RUGGEDCOM RSG2488 V5.X, RUGGEDCOM RSG2488F, RUGGEDCOM RSG2488NC V4.X, RUGGEDCOM RSG2488NC V5.X, RUGGEDCOM RSG907R, RUGGEDCOM RSG908C, RUGGEDCOM RSG909R, RUGGEDCOM RSG910C, RUGGEDCOM RSG920P V4.X, RUGGEDCOM RSG920P V5.X, RUGGEDCOM RSG920PNC V4.X, RUGGEDCOM RSG920PNC V5.X, RUGGEDCOM RSL910, RUGGEDCOM RSL910NC, RUGGEDCOM RST2228, RUGGEDCOM RST2228P, RUGGEDCOM RST916C, RUGGEDCOM RST916P. Within a third-party component, whenever memory allocation is requested, the out of bound size is not checked. Therefore, if size exceeding the expected allocation is assigned, it could allocate a smaller buffer instead. If an attacker were to exploit this, they could cause a heap overflow.	A vulnerability has been identified in RUGGEDCOM i800, RUGGEDCOM i800NC, RUGGEDCOM i801, RUGGEDCOM i801NC, RUGGEDCOM i802, RUGGEDCOM i802NC, RUGGEDCOM i803, RUGGEDCOM i803NC, RUGGEDCOM M2100, RUGGEDCOM M2100F, RUGGEDCOM M2100NC, RUGGEDCOM M2200, RUGGEDCOM M2200F, RUGGEDCOM M2200NC, RUGGEDCOM M969, RUGGEDCOM M969F, RUGGEDCOM M969NC, RUGGEDCOM RMC30, RUGGEDCOM RMC30NC, RUGGEDCOM RMC8388 V4.X, RUGGEDCOM RMC8388 V5.X, RUGGEDCOM RMC8388NC V4.X, RUGGEDCOM RMC8388NC V5.X, RUGGEDCOM RP110, RUGGEDCOM RP110NC, RUGGEDCOM RS1600, RUGGEDCOM RS1600F, RUGGEDCOM RS1600FNC, RUGGEDCOM RS1600NC, RUGGEDCOM RS1600T, RUGGEDCOM RS1600TNC, RUGGEDCOM RS400, RUGGEDCOM RS400F, RUGGEDCOM RS400NC, RUGGEDCOM RS401, RUGGEDCOM RS401NC, RUGGEDCOM RS416, RUGGEDCOM RS416F, RUGGEDCOM RS416NC, RUGGEDCOM RS416NCv2 V4.X, RUGGEDCOM RS416NCv2 V5.X, RUGGEDCOM RS416P, RUGGEDCOM RS416PF, RUGGEDCOM RS416PNC, RUGGEDCOM RS416PNCv2 V4.X, RUGGEDCOM RS416PNCv2 V5.X, RUGGEDCOM RS416Pv2 V4.X, RUGGEDCOM RS416Pv2 V5.X, RUGGEDCOM RS416v2 V4.X, RUGGEDCOM RS416v2 V5.X, RUGGEDCOM RS8000, RUGGEDCOM RS8000A, RUGGEDCOM RS8000ANC, RUGGEDCOM RS8000H, RUGGEDCOM RS8000HNC, RUGGEDCOM RS8000NC, RUGGEDCOM RS8000T, RUGGEDCOM RS8000TNC, RUGGEDCOM RS900, RUGGEDCOM RS900 (32M) V4.X, RUGGEDCOM RS900 (32M) V5.X, RUGGEDCOM RS900F, RUGGEDCOM RS900G, RUGGEDCOM RS900G (32M) V4.X, RUGGEDCOM RS900G (32M) V5.X, RUGGEDCOM RS900GF, RUGGEDCOM RS900GNC, RUGGEDCOM RS900GNC(32M) V4.X, RUGGEDCOM RS900GNC(32M) V5.X, RUGGEDCOM RS900GP, RUGGEDCOM RS900GPF, RUGGEDCOM RS900GPNC, RUGGEDCOM RS900L, RUGGEDCOM RS900LNC, RUGGEDCOM RS900M-GETS-C01, RUGGEDCOM RS900M-GETS-XX, RUGGEDCOM RS900M-STND-C01, RUGGEDCOM RS900M-STND-XX, RUGGEDCOM RS900MNC-GETS-C01, RUGGEDCOM RS900MNC-GETS-XX, RUGGEDCOM RS900MNC-STND-XX, RUGGEDCOM RS900MNC-STND-XX-C01, RUGGEDCOM RS900NC, RUGGEDCOM RS900NC(32M) V4.X, RUGGEDCOM RS900NC(32M) V5.X, RUGGEDCOM RS900W, RUGGEDCOM RS910, RUGGEDCOM RS910L, RUGGEDCOM RS910LNC, RUGGEDCOM RS910NC, RUGGEDCOM RS910W, RUGGEDCOM RS920L, RUGGEDCOM RS920LNC, RUGGEDCOM RS920W, RUGGEDCOM RS930L, RUGGEDCOM RS930LNC, RUGGEDCOM RS930W, RUGGEDCOM RS940G, RUGGEDCOM RS940GF, RUGGEDCOM RS940GNC, RUGGEDCOM RS969, RUGGEDCOM RS969NC, RUGGEDCOM RSG2100, RUGGEDCOM RSG2100 (32M) V4.X, RUGGEDCOM RSG2100 (32M) V5.X, RUGGEDCOM RSG2100F, RUGGEDCOM RSG2100NC, RUGGEDCOM RSG2100NC(32M) V4.X, RUGGEDCOM RSG2100NC(32M) V5.X, RUGGEDCOM RSG2100P, RUGGEDCOM RSG2100P (32M) V4.X, RUGGEDCOM RSG2100P (32M) V5.X, RUGGEDCOM RSG2100PF, RUGGEDCOM RSG2100PNC, RUGGEDCOM RSG2100PNC (32M) V4.X, RUGGEDCOM RSG2100PNC (32M) V5.X, RUGGEDCOM RSG2200, RUGGEDCOM RSG2200F, RUGGEDCOM RSG2200NC, RUGGEDCOM RSG2288 V4.X, RUGGEDCOM RSG2288 V5.X, RUGGEDCOM RSG2288NC V4.X, RUGGEDCOM RSG2288NC V5.X, RUGGEDCOM RSG2300 V4.X, RUGGEDCOM RSG2300 V5.X, RUGGEDCOM RSG2300F, RUGGEDCOM RSG2300NC V4.X, RUGGEDCOM RSG2300NC V5.X, RUGGEDCOM RSG2300P V4.X, RUGGEDCOM RSG2300P V5.X, RUGGEDCOM RSG2300PF, RUGGEDCOM RSG2300PNC V4.X, RUGGEDCOM RSG2300PNC V5.X, RUGGEDCOM RSG2488 V4.X, RUGGEDCOM RSG2488 V5.X, RUGGEDCOM RSG2488F, RUGGEDCOM RSG2488NC V4.X, RUGGEDCOM RSG2488NC V5.X, RUGGEDCOM RSG907R, RUGGEDCOM RSG908C, RUGGEDCOM RSG909R, RUGGEDCOM RSG910C, RUGGEDCOM RSG920P V4.X, RUGGEDCOM RSG920P V5.X, RUGGEDCOM RSG920PNC V4.X, RUGGEDCOM RSG920PNC V5.X, RUGGEDCOM RSL910, RUGGEDCOM RSL910NC, RUGGEDCOM RST2228, RUGGEDCOM RST2228P, RUGGEDCOM RST916C, RUGGEDCOM RST916P. Within a third-party component, whenever memory allocation is requested, the out of bound size is not checked. Therefore, if size exceeding the expected allocation is assigned, it could allocate a smaller buffer instead. If an attacker were to exploit this, they could cause a heap overflow.
References		https://cert-portal.siemens.com/productcert/html/ssa-256353.html

Tue, 15 Oct 2024 18:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: siemens

Published: 2022-03-08T11:31:17

Updated: 2025-08-12T11:11:02.161Z

Reserved: 2021-10-06T00:00:00

Link: CVE-2021-42018

Vulnrichment

Updated: 2024-08-04T03:22:25.739Z

NVD

Status : Modified

Published: 2022-03-08T12:15:10.950

Modified: 2025-08-12T12:15:28.217

Link: CVE-2021-42018

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

Attack Vector Network

Attack Complexity High

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Exploitation none

Automatable no

Technical Impact partial

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object