CVE-2021-27458 - OpenCVE

If Ethernet communication of the JTEKT Corporation TOYOPUC product series’ (TOYOPUC-PC10 Series: PC10G-CPU TCC-6353: All versions, PC10GE TCC-6464: All versions, PC10P TCC-6372: All versions, PC10P-DP TCC-6726: All versions, PC10P-DP-IO TCC-6752: All versions, PC10B-P TCC-6373: All versions, PC10B TCC-1021: All versions, PC10B-E/C TCU-6521: All versions, PC10E TCC-4737: All versions; TOYOPUC-Plus Series: Plus CPU TCC-6740: All versions, Plus EX TCU-6741: All versions, Plus EX2 TCU-6858: All versions, Plus EFR TCU-6743: All versions, Plus EFR2 TCU-6859: All versions, Plus 2P-EFR TCU-6929: All versions, Plus BUS-EX TCU-6900: All versions; TOYOPUC-PC3J/PC2J Series: FL/ET-T-V2H THU-6289: All versions, 2PORT-EFR THU-6404: All versions) are left in an open state by an attacker, Ethernet communications cannot be established with other devices, depending on the settings of the link parameters.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Jtekt	2port-efr Thu-6404 2port-efr Thu-6404 Firmware Fl\/et-t-v2h Thu-6289 Fl\/et-t-v2h Thu-6289 Firmware Pc10b-e\/c Tcu-6521 Pc10b-e\/c Tcu-6521 Firmware Pc10b-p Tcc-6373 Pc10b-p Tcc-6373 Firmware Pc10b Tcc-1021 Pc10b Tcc-1021 Firmware Pc10e Tcc-4737 Pc10e Tcc-4737 Firmware Pc10g-cpu Tcc-6353 Pc10g-cpu Tcc-6353 Firmware Pc10ge Tcc-6464 Pc10ge Tcc-6464 Firmware Pc10p-dp-io Tcc-6752 Pc10p-dp-io Tcc-6752 Firmware Pc10p-dp Tcc-6726 Pc10p-dp Tcc-6726 Firmware Pc10p Tcc-6372 Pc10p Tcc-6372 Firmware Plus 2p-efr Tcu-6929 Plus 2p-efr Tcu-6929 Firmware Plus Bus-ex Tcu-6900 Plus Bus-ex Tcu-6900 Firmware Plus Cpu Tcc-6740 Plus Cpu Tcc-6740 Firmware Plus Efr2 Tcu-6859 Plus Efr2 Tcu-6859 Firmware Plus Efr Tcu-6743 Plus Efr Tcu-6743 Firmware Plus Ex2 Tcu-6858 Plus Ex2 Tcu-6858 Firmware Plus Ex Tcu-6741 Plus Ex Tcu-6741 Firmware

Configuration 1 [-]

AND

cpe:2.3:h:jtekt:pc10g-cpu_tcc-6353:-:*:*:*:*:*:*:*

cpe:2.3:o:jtekt:pc10g-cpu_tcc-6353_firmware:*:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:h:jtekt:pc10ge_tcc-6464:-:*:*:*:*:*:*:*

cpe:2.3:o:jtekt:pc10ge_tcc-6464_firmware:*:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:h:jtekt:pc10p_tcc-6372:-:*:*:*:*:*:*:*

cpe:2.3:o:jtekt:pc10p_tcc-6372_firmware:*:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:h:jtekt:pc10p-dp_tcc-6726:-:*:*:*:*:*:*:*

cpe:2.3:o:jtekt:pc10p-dp_tcc-6726_firmware:*:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:h:jtekt:pc10p-dp-io_tcc-6752:-:*:*:*:*:*:*:*

cpe:2.3:o:jtekt:pc10p-dp-io_tcc-6752_firmware:*:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:h:jtekt:pc10b-p_tcc-6373:-:*:*:*:*:*:*:*

cpe:2.3:o:jtekt:pc10b-p_tcc-6373_firmware:*:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:h:jtekt:pc10b_tcc-1021:-:*:*:*:*:*:*:*

cpe:2.3:o:jtekt:pc10b_tcc-1021_firmware:*:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:h:jtekt:pc10b-e\/c_tcu-6521:-:*:*:*:*:*:*:*

cpe:2.3:o:jtekt:pc10b-e\/c_tcu-6521_firmware:*:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:jtekt:pc10e_tcc-4737_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:pc10e_tcc-4737:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:jtekt:plus_cpu_tcc-6740_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:plus_cpu_tcc-6740:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:jtekt:plus_ex_tcu-6741_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:plus_ex_tcu-6741:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:jtekt:plus_ex2_tcu-6858_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:plus_ex2_tcu-6858:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:jtekt:plus_efr_tcu-6743_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:plus_efr_tcu-6743:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:jtekt:plus_efr2_tcu-6859_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:plus_efr2_tcu-6859:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:jtekt:plus_2p-efr_tcu-6929_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:plus_2p-efr_tcu-6929:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:jtekt:plus_bus-ex_tcu-6900_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:plus_bus-ex_tcu-6900:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:jtekt:fl\/et-t-v2h_thu-6289_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:fl\/et-t-v2h_thu-6289:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:jtekt:2port-efr_thu-6404_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:2port-efr_thu-6404:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://us-cert.cisa.gov/ics/advisories/icsa-21-103-03

History

No history.

MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2021-04-19T21:07:55

Updated: 2024-08-03T20:48:17.229Z

Reserved: 2021-02-19T00:00:00

Link: CVE-2021-27458

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2021-04-19T22:15:12.967

Modified: 2021-04-29T15:05:16.547

Link: CVE-2021-27458

Redhat

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object