VDB
ICSA-21-103-01
ICSA-21-103-01
PUBLISHED
CVSS 8.600000381469727 HIGH
Successful exploitation of this vulnerability may result in disclosure and retrieval of arbitrary data on the affected node via out-of-band (OOB) attack.
Risk Scores
CVSS 3.1
8.600000381469727
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SoMachine Basic: all versions prior to v1.6 SP1 |
Timeline
- Apr 13, 2021 CVE Published
References
- https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2021/icsa-21-103-01.json advisory
- https://www.cisa.gov/news-events/ics-advisories/icsa-21-103-01 advisory
- https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf url
- https://us-cert.cisa.gov/ics/tips/ICS-TIP-12-146-01B url
- https://www.se.com/ww/en/download/document/Machine_Expert_Basic/ fix
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2018-142-01 fix
- https://www.se.com/us/en/download/document/7EN52-03-90/ fix