CVE-2021-21965
Description
A denial of service vulnerability exists in the SeaMax remote configuration functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. Specially-crafted network packets can lead to denial of service. An attacker can send a malicious packet to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
An unauthenticated denial of service vulnerability in the SeaMAX remote configuration interface of Sealevel SeaConnect 370W allows attackers to reboot the device via specially crafted UDP packets.
Vulnerability
The SeaConnect 370W v1.3.34 has a SeaMAX Ethernet API that listens on UDP port 30718. An attacker can send a specially crafted 'Reboot' request packet to this unauthenticated interface, causing a denial of service. This interface is disabled by default but can be enabled. [1]
Exploitation
An attacker with network access to UDP port 30718 sends a properly formatted 'Reboot' request packet. No authentication is required. The device reboots immediately, causing disruption of services. [1]
Impact
Successful exploitation results in immediate reboot of the device, leading to denial of service until the device recovers. The device becomes unavailable for its intended functions. [1]
Mitigation
Disable the SeaMAX Ethernet API if not needed. If required, restrict network access to trusted hosts. As of the reference, no firmware update is mentioned; devices on v1.3.34 are vulnerable. [1]
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Sealevel Systems, Inc./SeaConnect 370Wdescription
- Range: = v1.3.34
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- talosintelligence.com/vulnerability_reports/TALOS-2021-1392mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.