CVE-2021-3449 - OpenCVE

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:M/Au:N/C:N/I:N/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Checkpoint	Multi-domain Management Multi-domain Management Firmware Quantum Security Gateway Quantum Security Gateway Firmware Quantum Security Management Quantum Security Management Firmware
Debian	Debian Linux
Fedoraproject	Fedora
Freebsd	Freebsd
Mcafee	Web Gateway Web Gateway Cloud Service
Netapp	Active Iq Unified Manager Cloud Volumes Ontap Mediator E-series Performance Analyzer Oncommand Insight Oncommand Workflow Automation Ontap Select Deploy Administration Utility Santricity Smi-s Provider Snapcenter Storagegrid
Nodejs	Node.js
Openssl	Openssl
Oracle	Communications Communications Policy Management Enterprise Manager For Storage Management Essbase Graalvm Jd Edwards Enterpriseone Tools Jd Edwards World Security Mysql Connectors Mysql Server Mysql Workbench Peoplesoft Enterprise Peopletools Primavera Unifier Secure Backup Secure Global Desktop Zfs Storage Appliance Kit
Redhat	Enterprise Linux Jboss Core Services Jboss Enterprise Web Server Rhel Eus Rhev Hypervisor
Siemens	Ruggedcom Rcm1224 Ruggedcom Rcm1224 Firmware Scalance Lpe9403 Scalance Lpe9403 Firmware Scalance M-800 Scalance M-800 Firmware Scalance S602 Scalance S602 Firmware Scalance S612 Scalance S612 Firmware Scalance S615 Scalance S615 Firmware Scalance S623 Scalance S623 Firmware Scalance S627-2m Scalance S627-2m Firmware Scalance Sc-600 Scalance Sc-600 Firmware Scalance W1700 Scalance W1700 Firmware Scalance W700 Scalance W700 Firmware Scalance Xb-200 Scalance Xb-200 Firmware Scalance Xc-200 Scalance Xc-200 Firmware Scalance Xf-200ba Scalance Xf-200ba Firmware Scalance Xm-400 Scalance Xm-400 Firmware Scalance Xp-200 Scalance Xp-200 Firmware Scalance Xr-300wg Scalance Xr-300wg Firmware Scalance Xr524-8c Scalance Xr524-8c Firmware Scalance Xr526-8c Scalance Xr526-8c Firmware Scalance Xr528-6m Scalance Xr528-6m Firmware Scalance Xr552-12 Scalance Xr552-12 Firmware Simatic Cloud Connect 7 Simatic Cloud Connect 7 Firmware Simatic Cp 1242-7 Gprs V2 Simatic Cp 1242-7 Gprs V2 Firmware Simatic Hmi Basic Panels 2nd Generation Simatic Hmi Basic Panels 2nd Generation Firmware Simatic Hmi Comfort Outdoor Panels Simatic Hmi Comfort Outdoor Panels Firmware Simatic Hmi Ktp Mobile Panels Simatic Hmi Ktp Mobile Panels Firmware Simatic Logon Simatic Mv500 Simatic Mv500 Firmware Simatic Net Cp1243-7 Lte Eu Simatic Net Cp1243-7 Lte Eu Firmware Simatic Net Cp1243-7 Lte Us Simatic Net Cp1243-7 Lte Us Firmware Simatic Net Cp 1243-1 Simatic Net Cp 1243-1 Firmware Simatic Net Cp 1243-8 Irc Simatic Net Cp 1243-8 Irc Firmware Simatic Net Cp 1542sp-1 Irc Simatic Net Cp 1542sp-1 Irc Firmware Simatic Net Cp 1543-1 Simatic Net Cp 1543-1 Firmware Simatic Net Cp 1543sp-1 Simatic Net Cp 1543sp-1 Firmware Simatic Net Cp 1545-1 Simatic Net Cp 1545-1 Firmware Simatic Pcs 7 Telecontrol Simatic Pcs 7 Telecontrol Firmware Simatic Pcs Neo Simatic Pcs Neo Firmware Simatic Pdm Simatic Pdm Firmware Simatic Process Historian Opc Ua Server Simatic Process Historian Opc Ua Server Firmware Simatic Rf166c Simatic Rf166c Firmware Simatic Rf185c Simatic Rf185c Firmware Simatic Rf186c Simatic Rf186c Firmware Simatic Rf186ci Simatic Rf186ci Firmware Simatic Rf188c Simatic Rf188c Firmware Simatic Rf188ci Simatic Rf188ci Firmware Simatic Rf360r Simatic Rf360r Firmware Simatic S7-1200 Cpu 1211c Simatic S7-1200 Cpu 1211c Firmware Simatic S7-1200 Cpu 1212c Simatic S7-1200 Cpu 1212c Firmware Simatic S7-1200 Cpu 1212fc Simatic S7-1200 Cpu 1212fc Firmware Simatic S7-1200 Cpu 1214 Fc Simatic S7-1200 Cpu 1214 Fc Firmware Simatic S7-1200 Cpu 1214c Simatic S7-1200 Cpu 1214c Firmware Simatic S7-1200 Cpu 1215 Fc Simatic S7-1200 Cpu 1215 Fc Firmware Simatic S7-1200 Cpu 1215c Simatic S7-1200 Cpu 1215c Firmware Simatic S7-1200 Cpu 1217c Simatic S7-1200 Cpu 1217c Firmware Simatic S7-1500 Cpu 1518-4 Pn\/dp Mfp Simatic S7-1500 Cpu 1518-4 Pn\/dp Mfp Firmware Simatic Wincc Runtime Advanced Simatic Wincc Telecontrol Sinamics Connect 300 Sinamics Connect 300 Firmware Sinec Infrastructure Network Services Sinec Nms Sinec Pni Sinema Server Sinumerik Opc Ua Server Tia Administrator Tim 1531 Irc Tim 1531 Irc Firmware
Sonicwall	Capture Client Sma100 Sma100 Firmware Sonicos
Tenable	Log Correlation Engine Nessus Nessus Network Monitor Tenable.sc

Configuration 1 [-]

cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*

Configuration 2 [-]

OR	cpe:2.3:o:debian:debian_linux:9.0:::::::*
	cpe:2.3:o:debian:debian_linux:10.0:::::::*

Configuration 3 [-]

OR	cpe:2.3:o:freebsd:freebsd:12.2:-::::::
	cpe:2.3:o:freebsd:freebsd:12.2:p1::::::
	cpe:2.3:o:freebsd:freebsd:12.2:p2::::::

Configuration 4 [-]

OR	cpe:2.3:a:netapp:active_iq_unified_manager:-:::::vmware_vsphere::
	cpe:2.3:a:netapp:cloud_volumes_ontap_mediator:-:::::::*
	cpe:2.3:a:netapp:e-series_performance_analyzer:-:::::::*
	cpe:2.3:a:netapp:oncommand_insight:-:::::::*
	cpe:2.3:a:netapp:oncommand_workflow_automation:-:::::::*
	cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:::::::*
	cpe:2.3:a:netapp:santricity_smi-s_provider:-:::::::*
	cpe:2.3:a:netapp:snapcenter:-:::::::*
	cpe:2.3:a:netapp:storagegrid:-:::::::*

Configuration 5 [-]

OR	cpe:2.3:a:tenable:log_correlation_engine::::::::
	cpe:2.3:a:tenable:nessus::::::::
	cpe:2.3:a:tenable:nessus_network_monitor:5.11.0:::::::*
	cpe:2.3:a:tenable:nessus_network_monitor:5.11.1:::::::*
	cpe:2.3:a:tenable:nessus_network_monitor:5.12.0:::::::*
	cpe:2.3:a:tenable:nessus_network_monitor:5.12.1:::::::*
	cpe:2.3:a:tenable:nessus_network_monitor:5.13.0:::::::*
	cpe:2.3:a:tenable:tenable.sc::::::::

Configuration 6 [-]

cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*

Configuration 7 [-]

OR	cpe:2.3:a:mcafee:web_gateway:8.2.19:::::::*
	cpe:2.3:a:mcafee:web_gateway:9.2.10:::::::*
	cpe:2.3:a:mcafee:web_gateway:10.1.1:::::::*
	cpe:2.3:a:mcafee:web_gateway_cloud_service:8.2.19:::::::*
	cpe:2.3:a:mcafee:web_gateway_cloud_service:9.2.10:::::::*
	cpe:2.3:a:mcafee:web_gateway_cloud_service:10.1.1:::::::*

Configuration 8 [-]

AND

OR	cpe:2.3:o:checkpoint:quantum_security_management_firmware:r80.40:::::::*
	cpe:2.3:o:checkpoint:quantum_security_management_firmware:r81:::::::*

cpe:2.3:h:checkpoint:quantum_security_management:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

OR	cpe:2.3:o:checkpoint:multi-domain_management_firmware:r80.40:::::::*
	cpe:2.3:o:checkpoint:multi-domain_management_firmware:r81:::::::*

cpe:2.3:h:checkpoint:multi-domain_management:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

OR	cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r80.40:::::::*
	cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r81:::::::*

cpe:2.3:h:checkpoint:quantum_security_gateway:-:*:*:*:*:*:*:*

Configuration 11 [-]

OR	cpe:2.3:a:oracle:communications_communications_policy_management:12.6.0.0.0:::::::*
	cpe:2.3:a:oracle:enterprise_manager_for_storage_management:13.4.0.0:::::::*
	cpe:2.3:a:oracle:essbase:21.2:::::::*
	cpe:2.3:a:oracle:graalvm:19.3.5::::enterprise:::
	cpe:2.3:a:oracle:graalvm:20.3.1.2::::enterprise:::
	cpe:2.3:a:oracle:graalvm:21.0.0.2::::enterprise:::
	cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools::::::::
	cpe:2.3:a:oracle:jd_edwards_world_security:a9.4:::::::*
	cpe:2.3:a:oracle:mysql_connectors::::::::
	cpe:2.3:a:oracle:mysql_server::::::::
	cpe:2.3:a:oracle:mysql_server::::::::
	cpe:2.3:a:oracle:mysql_workbench::::::::
	cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:::::::*
	cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:::::::*
	cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:::::::*
	cpe:2.3:a:oracle:primavera_unifier::::::::
	cpe:2.3:a:oracle:primavera_unifier:19.12:::::::*
	cpe:2.3:a:oracle:primavera_unifier:20.12:::::::*
	cpe:2.3:a:oracle:primavera_unifier:21.12:::::::*
	cpe:2.3:a:oracle:secure_backup::::::::
	cpe:2.3:a:oracle:secure_global_desktop:5.6:::::::*
	cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:::::::*

Configuration 12 [-]

AND

cpe:2.3:o:sonicwall:sma100_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:sma100:-:*:*:*:*:*:*:*

Configuration 13 [-]

OR	cpe:2.3:a:sonicwall:capture_client:3.5:::::::*
	cpe:2.3:o:sonicwall:sonicos:7.0.1.0:::::::*

Configuration 14 [-]

AND

cpe:2.3:o:siemens:ruggedcom_rcm1224_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:ruggedcom_rcm1224:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:siemens:scalance_lpe9403_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_lpe9403:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:siemens:scalance_m-800_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_m-800:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:siemens:scalance_s602_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_s602:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:siemens:scalance_s612_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_s612:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:siemens:scalance_s615_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_s615:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:siemens:scalance_s623_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_s623:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:siemens:scalance_s627-2m_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_s627-2m:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:siemens:scalance_sc-600_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_sc-600:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:siemens:scalance_w700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_w700:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:siemens:scalance_w1700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_w1700:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:siemens:scalance_xb-200_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_xb-200:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:h:siemens:scalance_xc-200:-:*:*:*:*:*:*:*

cpe:2.3:o:siemens:scalance_xc-200_firmware:*:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:h:siemens:scalance_xf-200ba:-:*:*:*:*:*:*:*

cpe:2.3:o:siemens:scalance_xf-200ba_firmware:*:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:h:siemens:scalance_xm-400:-:*:*:*:*:*:*:*

cpe:2.3:o:siemens:scalance_xm-400_firmware:*:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:h:siemens:scalance_xp-200:-:*:*:*:*:*:*:*

cpe:2.3:o:siemens:scalance_xp-200_firmware:*:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:h:siemens:scalance_xr-300wg:-:*:*:*:*:*:*:*

cpe:2.3:o:siemens:scalance_xr-300wg_firmware:*:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:h:siemens:scalance_xr524-8c:-:*:*:*:*:*:*:*

cpe:2.3:o:siemens:scalance_xr524-8c_firmware:*:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:h:siemens:scalance_xr526-8c:-:*:*:*:*:*:*:*

cpe:2.3:o:siemens:scalance_xr526-8c_firmware:*:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:h:siemens:scalance_xr528-6m:-:*:*:*:*:*:*:*

cpe:2.3:o:siemens:scalance_xr528-6m_firmware:*:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:siemens:scalance_xr552-12_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_xr552-12:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

OR	cpe:2.3:o:siemens:simatic_cloud_connect_7_firmware::::::::
	cpe:2.3:o:siemens:simatic_cloud_connect_7_firmware:-:::::::*

cpe:2.3:h:siemens:simatic_cloud_connect_7:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

OR	cpe:2.3:o:siemens:simatic_cp_1242-7_gprs_v2_firmware::::::::
	cpe:2.3:o:siemens:simatic_cp_1242-7_gprs_v2_firmware:-:::::::*

cpe:2.3:h:siemens:simatic_cp_1242-7_gprs_v2:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

cpe:2.3:o:siemens:simatic_hmi_basic_panels_2nd_generation_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_hmi_basic_panels_2nd_generation:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_hmi_comfort_outdoor_panels:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND

cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_hmi_ktp_mobile_panels:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND

cpe:2.3:o:siemens:simatic_mv500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_mv500:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND

cpe:2.3:o:siemens:simatic_net_cp_1243-1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_net_cp_1243-1:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND

cpe:2.3:o:siemens:simatic_net_cp1243-7_lte_eu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_net_cp1243-7_lte_eu:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND

cpe:2.3:o:siemens:simatic_net_cp1243-7_lte_us_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_net_cp1243-7_lte_us:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND

cpe:2.3:o:siemens:simatic_net_cp_1243-8_irc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_net_cp_1243-8_irc:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND

cpe:2.3:o:siemens:simatic_net_cp_1542sp-1_irc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_net_cp_1542sp-1_irc:-:*:*:*:*:*:*:*

Configuration 46 [-]

AND

cpe:2.3:o:siemens:simatic_net_cp_1543-1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_net_cp_1543-1:-:*:*:*:*:*:*:*

Configuration 47 [-]

AND

cpe:2.3:o:siemens:simatic_net_cp_1543sp-1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_net_cp_1543sp-1:-:*:*:*:*:*:*:*

Configuration 48 [-]

AND

cpe:2.3:o:siemens:simatic_net_cp_1545-1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_net_cp_1545-1:-:*:*:*:*:*:*:*

Configuration 49 [-]

AND

cpe:2.3:o:siemens:simatic_pcs_7_telecontrol_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_pcs_7_telecontrol:-:*:*:*:*:*:*:*

Configuration 50 [-]

AND

cpe:2.3:o:siemens:simatic_pcs_neo_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_pcs_neo:-:*:*:*:*:*:*:*

Configuration 51 [-]

AND

cpe:2.3:o:siemens:simatic_pdm_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_pdm:-:*:*:*:*:*:*:*

Configuration 52 [-]

AND

cpe:2.3:o:siemens:simatic_process_historian_opc_ua_server_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_process_historian_opc_ua_server:-:*:*:*:*:*:*:*

Configuration 53 [-]

AND

cpe:2.3:o:siemens:simatic_rf166c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf166c:-:*:*:*:*:*:*:*

Configuration 54 [-]

AND

cpe:2.3:o:siemens:simatic_rf185c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf185c:-:*:*:*:*:*:*:*

Configuration 55 [-]

AND

cpe:2.3:o:siemens:simatic_rf186c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf186c:-:*:*:*:*:*:*:*

Configuration 56 [-]

AND

cpe:2.3:o:siemens:simatic_rf186ci_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf186ci:-:*:*:*:*:*:*:*

Configuration 57 [-]

AND

cpe:2.3:o:siemens:simatic_rf188c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf188c:-:*:*:*:*:*:*:*

Configuration 58 [-]

AND

cpe:2.3:o:siemens:simatic_rf188ci_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf188ci:-:*:*:*:*:*:*:*

Configuration 59 [-]

AND

cpe:2.3:o:siemens:simatic_rf360r_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf360r:-:*:*:*:*:*:*:*

Configuration 60 [-]

AND

cpe:2.3:o:siemens:simatic_s7-1200_cpu_1211c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_s7-1200_cpu_1211c:-:*:*:*:*:*:*:*

Configuration 61 [-]

AND

cpe:2.3:o:siemens:simatic_s7-1200_cpu_1212c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_s7-1200_cpu_1212c:-:*:*:*:*:*:*:*

Configuration 62 [-]

AND

cpe:2.3:o:siemens:simatic_s7-1200_cpu_1212fc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_s7-1200_cpu_1212fc:-:*:*:*:*:*:*:*

Configuration 63 [-]

AND

cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214_fc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_s7-1200_cpu_1214_fc:-:*:*:*:*:*:*:*

Configuration 64 [-]

AND

cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_s7-1200_cpu_1214c:-:*:*:*:*:*:*:*

Configuration 65 [-]

AND

cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214_fc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_s7-1200_cpu_1214_fc:-:*:*:*:*:*:*:*

Configuration 66 [-]

AND

cpe:2.3:o:siemens:simatic_s7-1200_cpu_1215_fc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_s7-1200_cpu_1215_fc:-:*:*:*:*:*:*:*

Configuration 67 [-]

AND

cpe:2.3:o:siemens:simatic_s7-1200_cpu_1215c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_s7-1200_cpu_1215c:-:*:*:*:*:*:*:*

Configuration 68 [-]

AND

cpe:2.3:o:siemens:simatic_s7-1200_cpu_1217c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_s7-1200_cpu_1217c:-:*:*:*:*:*:*:*

Configuration 69 [-]

AND

cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518-4_pn\/dp_mfp_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518-4_pn\/dp_mfp:-:*:*:*:*:*:*:*

Configuration 70 [-]

AND

cpe:2.3:o:siemens:sinamics_connect_300_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:sinamics_connect_300:-:*:*:*:*:*:*:*

Configuration 71 [-]

AND

cpe:2.3:o:siemens:tim_1531_irc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:tim_1531_irc:-:*:*:*:*:*:*:*

Configuration 72 [-]

OR	cpe:2.3:a:siemens:simatic_logon::::::::
	cpe:2.3:a:siemens:simatic_logon:1.5:sp3_update_1::::::
	cpe:2.3:a:siemens:simatic_wincc_runtime_advanced::::::::
	cpe:2.3:a:siemens:simatic_wincc_telecontrol:-:::::::*
	cpe:2.3:a:siemens:sinec_nms:1.0:-::::::
	cpe:2.3:a:siemens:sinec_nms:1.0:sp1::::::
	cpe:2.3:a:siemens:sinec_pni:-:::::::*
	cpe:2.3:a:siemens:sinema_server:14.0:-::::::
	cpe:2.3:a:siemens:sinema_server:14.0:sp1::::::
	cpe:2.3:a:siemens:sinema_server:14.0:sp2::::::
	cpe:2.3:a:siemens:sinema_server:14.0:sp2_update1::::::
	cpe:2.3:a:siemens:sinema_server:14.0:sp2_update2::::::
	cpe:2.3:a:siemens:sinumerik_opc_ua_server::::::::
	cpe:2.3:a:siemens:tia_administrator::::::::

Configuration 73 [-]

cpe:2.3:a:siemens:sinec_infrastructure_network_services:*:*:*:*:*:*:*:*

Configuration 74 [-]

OR	cpe:2.3:a:nodejs:node.js:::::-:::*
	cpe:2.3:a:nodejs:node.js:::::lts:::*
	cpe:2.3:a:nodejs:node.js:::::-:::*
	cpe:2.3:a:nodejs:node.js:::::lts:::*
	cpe:2.3:a:nodejs:node.js:::::-:::*
	cpe:2.3:a:nodejs:node.js:::::lts:::*
	cpe:2.3:a:nodejs:node.js:::::-:::*

Package	CPE	Advisory	Released Date
JBCS 2.4.37 SP7
openssl	cpe:/a:redhat:jboss_core_services:1	RHSA-2021:1200	2021-04-14T00:00:00Z
JBoss Core Services on RHEL 7
jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7	cpe:/a:redhat:jboss_core_services:1::el7	RHSA-2021:1199	2021-04-14T00:00:00Z
jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7	cpe:/a:redhat:jboss_core_services:1::el7	RHSA-2021:1199	2021-04-14T00:00:00Z
jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7	cpe:/a:redhat:jboss_core_services:1::el7	RHSA-2021:1199	2021-04-14T00:00:00Z
jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7	cpe:/a:redhat:jboss_core_services:1::el7	RHSA-2021:1199	2021-04-14T00:00:00Z
jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7	cpe:/a:redhat:jboss_core_services:1::el7	RHSA-2021:1199	2021-04-14T00:00:00Z
jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7	cpe:/a:redhat:jboss_core_services:1::el7	RHSA-2021:1199	2021-04-14T00:00:00Z
jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7	cpe:/a:redhat:jboss_core_services:1::el7	RHSA-2021:1199	2021-04-14T00:00:00Z
jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7	cpe:/a:redhat:jboss_core_services:1::el7	RHSA-2021:1199	2021-04-14T00:00:00Z
jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7	cpe:/a:redhat:jboss_core_services:1::el7	RHSA-2021:1199	2021-04-14T00:00:00Z
jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7	cpe:/a:redhat:jboss_core_services:1::el7	RHSA-2021:1199	2021-04-14T00:00:00Z
Red Hat Enterprise Linux 8
openssl-1:1.1.1g-15.el8_3	cpe:/o:redhat:enterprise_linux:8	RHSA-2021:1024	2021-03-30T00:00:00Z
Red Hat Enterprise Linux 8.1 Extended Update Support
openssl-1:1.1.1c-5.el8_1	cpe:/o:redhat:rhel_eus:8.1	RHSA-2021:1131	2021-04-07T00:00:00Z
Red Hat Enterprise Linux 8.2 Extended Update Support
openssl-1:1.1.1c-18.el8_2	cpe:/o:redhat:rhel_eus:8.2	RHSA-2021:1063	2021-04-05T00:00:00Z
Red Hat JBoss Web Server 3.1
	cpe:/a:redhat:jboss_enterprise_web_server:3.1	RHSA-2021:1203	2021-04-14T00:00:00Z
Red Hat JBoss Web Server 3 for RHEL 7
tomcat-native-0:1.2.23-24.redhat_24.ep7.el7	cpe:/a:redhat:jboss_enterprise_web_server:3.1::el7	RHSA-2021:1202	2021-04-14T00:00:00Z
Red Hat JBoss Web Server 5
	cpe:/a:redhat:jboss_enterprise_web_server:5.4	RHSA-2021:1196	2021-04-14T00:00:00Z
Red Hat JBoss Web Server 5.4 on RHEL 7
jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws	cpe:/a:redhat:jboss_enterprise_web_server:5.4::el7	RHSA-2021:1195	2021-04-14T00:00:00Z
Red Hat JBoss Web Server 5.4 on RHEL 8
jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws	cpe:/a:redhat:jboss_enterprise_web_server:5.4::el8	RHSA-2021:1195	2021-04-14T00:00:00Z
Red Hat Virtualization 4 for Red Hat Enterprise Linux 8
redhat-virtualization-host-0:4.4.5-20210330.0.el8_3	cpe:/o:redhat:rhev_hypervisor:4.4::el8	RHSA-2021:1189	2021-04-14T00:00:00Z

References

Link	Providers
http://www.openwall.com/lists/oss-security/2021/03/27/1
http://www.openwall.com/lists/oss-security/2021/03/27/2
http://www.openwall.com/lists/oss-security/2021/03/28/3
http://www.openwall.com/lists/oss-security/2021/03/28/4
https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf
https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=fb9fa6b51defd48157eeb207f52181f735d96148
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845
https://kc.mcafee.com/corporate/index?page=content&id=SB10356
https://lists.debian.org/debian-lts-announce/2021/08/msg00029.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/
https://nvd.nist.gov/vuln/detail/CVE-2021-3449
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013
https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc
https://security.gentoo.org/glsa/202103-03
https://security.netapp.com/advisory/ntap-20210326-0006/
https://security.netapp.com/advisory/ntap-20210513-0002/
https://security.netapp.com/advisory/ntap-20240621-0006/
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd
https://www.cve.org/CVERecord?id=CVE-2021-3449
https://www.debian.org/security/2021/dsa-4875
https://www.openssl.org/news/secadv/20210325.txt
https://www.oracle.com//security-alerts/cpujul2021.html
https://www.oracle.com/security-alerts/cpuApr2021.html
https://www.oracle.com/security-alerts/cpuapr2022.html
https://www.oracle.com/security-alerts/cpujul2022.html
https://www.oracle.com/security-alerts/cpuoct2021.html
https://www.tenable.com/security/tns-2021-05
https://www.tenable.com/security/tns-2021-06
https://www.tenable.com/security/tns-2021-09
https://www.tenable.com/security/tns-2021-10

History

No history.

MITRE

Status: PUBLISHED

Assigner: openssl

Published: 2021-03-25T14:25:13.659307Z

Updated: 2024-09-17T03:43:55.497Z

Reserved: 2021-03-17T00:00:00

Link: CVE-2021-3449

Vulnrichment

No data.

NVD

Status : Modified

Published: 2021-03-25T15:15:13.450

Modified: 2024-06-21T19:15:19.710

Link: CVE-2021-3449

Redhat

Severity : Important

Publid Date: 2021-03-25T00:00:00Z

Links: CVE-2021-3449 - Bugzilla

Metrics

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object