VDB
ICSA-21-042-01
ICSA-21-042-01
PUBLISHED
CVSS 7.5 HIGH
Successful exploitation of weak initial sequence numbers (ISN) can be used to hijack or spoof TCP connections, cause denial-of-service conditions, inject malicious data, or bypass authentication.
Risk Scores
CVSS v3.1
7.5
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| FNET: Version 4.6.3 | ||
| picoTCP-NG: Version 1.7.0 and prior | ||
| Capital VSTAR: All Versions | ||
| uIP-Contiki-OS (end-of-life [EOL]): Version 3.0 and prior | ||
| uC/TCP-IP (EOL): Version 3.6.0 and prior | ||
| Nut/Net: Version 5.1 and prior | ||
| Nucleus Source Code: All Versions | ||
| uIP (EOL): Version 1.0 and prior | ||
| Nucleus NET All: versions prior to Version 5.2 | ||
| MPLAB Net: Version 3.6.1 and prior | ||
| uIP-Contiki-NG: Version 4.5 and prior | ||
| CycloneTCP: Version 1.9.6 and prior | ||
| Nucleus ReadyStart for ARM MIPS and PPC: All versions prior to Version 2012.12 | ||
| picoTCP (EOL): Version 1.7.0 and prior | ||
| NDKTCPIP: Version 2.25 and prior |
Timeline
- Feb 11, 2021 CVE Published
- Nov 11, 2021 CVE Updated
References
- https://www.siemens.com/cert/advisories fix
- https://www.ti.com/tool/NDKTCPIP fix
- https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2021/icsa-21-042-01.json advisory
- https://www.cisa.gov/news-events/ics-advisories/icsa-21-042-01 advisory
- https://us-cert.cisa.gov/ics/alerts/ICS-ALERT-10-301-01 url
- https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf url
- https://us-cert.cisa.gov/ics/tips/ICS-TIP-12-146-01B url
- https://github.com/virtualsquare/picotcp/pull/3 fix
- https://github.com/Microchip-MPLAB-Harmony/net/security/advisories/GHSA-2q6g-59x4-pwx6 fix
- https://support.sw.siemens.com/en-US/product/1009925838/downloads fix
- https://github.com/Oryx-Embedded/CycloneTCP/commit/248b6e2063906d2c98a096d235cb008424d72fa6 fix
- https://github.com/butok/FNET/releases/tag/v4.7.1 fix