VYPR
← All advisories
Unrated severityNVD Advisory· Published Jan 11, 2022· Updated Aug 4, 2024

CVE-2021-41769

CVE-2021-41769

Description

A vulnerability has been identified in SIPROTEC 5 6MD85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 6MD86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 6MD89 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 6MU85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7KE85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SA82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SA86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SA87 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SD82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SD86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SD87 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SJ81 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SJ82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SJ85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SJ86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SK82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SK85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SL82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SL86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SL87 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SS85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7ST85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SX85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7UM85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7UT82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7UT85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7UT86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7UT87 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7VE85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7VK87 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 Compact 7SX800 devices (CPU variant CP050) (All versions < V8.83). An improper input validation vulnerability in the web server could allow an unauthenticated user to access device information.

Affected products

31
  • Siemens/SIPROTEC 5 6MD85 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 6MD86 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 6MD89 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 6MU85 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7KE85 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SA82 devices (CPU variant CP100)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SA86 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SA87 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SD82 devices (CPU variant CP100)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SD86 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SD87 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SJ81 devices (CPU variant CP100)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SJ82 devices (CPU variant CP100)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SJ85 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SJ86 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SK82 devices (CPU variant CP100)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SK85 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SL82 devices (CPU variant CP100)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SL86 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SL87 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SS85 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7ST85 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7SX85 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7UM85 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7UT82 devices (CPU variant CP100)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7UT85 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7UT86 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7UT87 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7VE85 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens/SIPROTEC 5 7VK87 devices (CPU variant CP300)v5
    Range: All versions < V8.83
  • Siemens Foundation/SIPROTEC 5 Compact 7SX800 (CP050)cpe-rescue
    Range: All versions < V8.83

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.