{"containers":{"cna":{"affected":[{"product":"PROFINET IO Device","vendor":"Hilscher","versions":[{"lessThan":"V3.14.0.7","status":"affected","version":"V3","versionType":"custom"}]},{"product":"PCV/PXV/PGV","vendor":"Pepper+Fuchs","versions":[{"lessThanOrEqual":"V2.0.0","status":"affected","version":"PGV100-F200A-B17-V1D, PGV150I-F200A-B17-V1D, PGV100-F200-B17-V1D-7477","versionType":"custom"},{"lessThanOrEqual":"V4.2.0","status":"affected","version":"PXV100-F200-B17-V1D, PXV100-F200-B17-V1D-3636","versionType":"custom"},{"lessThanOrEqual":"V3.2.3","status":"affected","version":"PCV80-F200-B17-V1D, PCV100-F200-B17-V1D, PCV50-F200-B17-V1D, PCV100-F200-B17-V1D-6011-6997","versionType":"custom"},{"lessThanOrEqual":"V3.2.5","status":"affected","version":"PCV100-F200-B17-V1D-6011, PCV100-F200-B17-V1D-6011-8203","versionType":"custom"}]},{"product":"PXV/PGV B28 Profisafe","vendor":"Pepper+Fuchs","versions":[{"lessThanOrEqual":"V1.0.3","status":"affected","version":"PXV100A-F200-B28-V1D, PXV100A-F200-B28-V1D-6011, PGV100A-F200-B28-V1D, PGV100A-F200A-B28-V1D","versionType":"custom"},{"lessThanOrEqual":"V2.1.1","status":"affected","version":"PGV100AQ-F200A-B28-V1D, PGV100AQ-F200-B28-V1D, PXV100AQ-F200-B28-V1D, PXV100AQ-F200-B28-V1D-6011","versionType":"custom"}]},{"product":"OHV","vendor":"Pepper+Fuchs","versions":[{"lessThanOrEqual":"V1.1.0","status":"affected","version":"OHV-F230-B17","versionType":"custom"}]},{"product":"OIT","vendor":"Pepper+Fuchs","versions":[{"lessThanOrEqual":"V1.3.4","status":"affected","version":"OIT500-F113-B17-CB","versionType":"custom"}]},{"product":"PHA","vendor":"Pepper+Fuchs","versions":[{"lessThanOrEqual":"V3.1.5","status":"affected","version":"PHA300-F200-B17-V1D, PHA400-F200-B17-V1D, PHA300-F200A-B17-V1D, PHA300-F200-B17-T-V1D, PHA200-F200A-B17-V1D, PHA200-F200-B17-V1D, PHA400-F200A-B17-V1D, PHA300-F200A-B17-T-V1D, PHA600-F200A-B17-V1D, PHA500-F200-B17-V1D, PHA500-F200A-B17-V1D, PHA600-F200-B17-V1D, PHA150-F200A-B17-V1D, PHA200-F200A-B17-T-V1D, PHA150-F200-B17-V1D, PHA800-F200-B17-V1D, PHA400-F200A-B17-T-V1D, PHA500-F200A-B17-T-V1D, PHA700-F200-B17-V1D","versionType":"custom"}]},{"product":"WCS","vendor":"Pepper+Fuchs","versions":[{"lessThanOrEqual":"V3.0.0","status":"affected","version":"WCS3B-LS610, WCS3B-LS610H, WCS3B-LS610D, WCS3B-LS610DH, WCS3B-LS610H-OM, WCS3B-LS610DH-OM, WCS3B-LS610D-OM, CS3B-LS610-OM","versionType":"custom"}]}],"datePublic":"2021-02-15T00:00:00.000Z","descriptions":[{"lang":"en","value":"A Denial of Service vulnerability was found in Hilscher PROFINET IO Device V3 in versions prior to V3.14.0.7. This may lead to unexpected loss of cyclic communication or interruption of acyclic communication."}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":7.5,"baseSeverity":"HIGH","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","version":"3.1"}}],"problemTypes":[{"descriptions":[{"cweId":"CWE-787","description":"CWE-787 Out-of-bounds Write","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2021-02-16T16:35:48.000Z","orgId":"270ccfa6-a436-4e77-922e-914ec3a9685c","shortName":"CERTVDE"},"references":[{"tags":["x_refsource_CONFIRM"],"url":"https://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device"},{"tags":["x_refsource_CONFIRM"],"url":"https://cert.vde.com/en-us/advisories/vde-2021-006"}],"source":{"advisory":"vde-2021-006","defect":["vde-2021-006"],"discovery":"UNKNOWN"},"title":"Hilscher: Denial of Service vulnerability in PROFINET IO Device","x_generator":{"engine":"Vulnogram 0.0.9"},"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"info@cert.vde.com","DATE_PUBLIC":"2021-02-15T13:00:00.000Z","ID":"CVE-2021-20986","STATE":"PUBLIC","TITLE":"Hilscher: Denial of Service vulnerability in PROFINET IO Device"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"PROFINET IO Device","version":{"version_data":[{"version_affected":"<","version_name":"V3","version_value":"V3.14.0.7"}]}}]},"vendor_name":"Hilscher"},{"product":{"product_data":[{"product_name":"PCV/PXV/PGV","version":{"version_data":[{"version_affected":"<=","version_name":"PGV100-F200A-B17-V1D, PGV150I-F200A-B17-V1D, PGV100-F200-B17-V1D-7477","version_value":"V2.0.0"},{"version_affected":"<=","version_name":"PXV100-F200-B17-V1D, PXV100-F200-B17-V1D-3636","version_value":"V4.2.0"},{"version_affected":"<=","version_name":"PCV80-F200-B17-V1D, PCV100-F200-B17-V1D, PCV50-F200-B17-V1D, PCV100-F200-B17-V1D-6011-6997","version_value":"V3.2.3"},{"version_affected":"<=","version_name":"PCV100-F200-B17-V1D-6011, PCV100-F200-B17-V1D-6011-8203","version_value":"V3.2.5"}]}},{"product_name":"PXV/PGV B28 Profisafe","version":{"version_data":[{"version_affected":"<=","version_name":"PXV100A-F200-B28-V1D, PXV100A-F200-B28-V1D-6011, PGV100A-F200-B28-V1D, PGV100A-F200A-B28-V1D","version_value":"V1.0.3"},{"version_affected":"<=","version_name":"PGV100AQ-F200A-B28-V1D, PGV100AQ-F200-B28-V1D, PXV100AQ-F200-B28-V1D, PXV100AQ-F200-B28-V1D-6011","version_value":"V2.1.1"}]}},{"product_name":"OHV","version":{"version_data":[{"version_affected":"<=","version_name":"OHV-F230-B17","version_value":"V1.1.0"}]}},{"product_name":"OIT","version":{"version_data":[{"version_affected":"<=","version_name":"OIT500-F113-B17-CB","version_value":"V1.3.4"}]}},{"product_name":"PHA","version":{"version_data":[{"version_affected":"<=","version_name":"PHA300-F200-B17-V1D, PHA400-F200-B17-V1D, PHA300-F200A-B17-V1D, PHA300-F200-B17-T-V1D, PHA200-F200A-B17-V1D, PHA200-F200-B17-V1D, PHA400-F200A-B17-V1D, PHA300-F200A-B17-T-V1D, PHA600-F200A-B17-V1D, PHA500-F200-B17-V1D, PHA500-F200A-B17-V1D, PHA600-F200-B17-V1D, PHA150-F200A-B17-V1D, PHA200-F200A-B17-T-V1D, PHA150-F200-B17-V1D, PHA800-F200-B17-V1D, PHA400-F200A-B17-T-V1D, PHA500-F200A-B17-T-V1D, PHA700-F200-B17-V1D","version_value":"V3.1.5"}]}},{"product_name":"WCS","version":{"version_data":[{"version_affected":"<=","version_name":"WCS3B-LS610, WCS3B-LS610H, WCS3B-LS610D, WCS3B-LS610DH, WCS3B-LS610H-OM, WCS3B-LS610DH-OM, WCS3B-LS610D-OM, CS3B-LS610-OM","version_value":"V3.0.0"}]}}]},"vendor_name":"Pepper+Fuchs"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"A Denial of Service vulnerability was found in Hilscher PROFINET IO Device V3 in versions prior to V3.14.0.7. This may lead to unexpected loss of cyclic communication or interruption of acyclic communication."}]},"generator":{"engine":"Vulnogram 0.0.9"},"impact":{"cvss":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":7.5,"baseSeverity":"HIGH","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","version":"3.1"}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-787 Out-of-bounds Write"}]}]},"references":{"reference_data":[{"name":"https://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device","refsource":"CONFIRM","url":"https://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device"},{"name":"https://cert.vde.com/en-us/advisories/vde-2021-006","refsource":"CONFIRM","url":"https://cert.vde.com/en-us/advisories/vde-2021-006"}]},"source":{"advisory":"vde-2021-006","defect":["vde-2021-006"],"discovery":"UNKNOWN"}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T17:53:23.078Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://kb.hilscher.com/display/ISMS/2020-12-03+Denial+of+Service+vulnerability+in+PROFINET+IO+Device"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://cert.vde.com/en-us/advisories/vde-2021-006"}]}]},"cveMetadata":{"assignerOrgId":"270ccfa6-a436-4e77-922e-914ec3a9685c","assignerShortName":"CERTVDE","cveId":"CVE-2021-20986","datePublished":"2021-02-16T16:35:48.460Z","dateReserved":"2020-12-17T00:00:00.000Z","dateUpdated":"2024-09-16T23:46:42.601Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}