phoenixcontact fl_switch_smcs_16tx_firmware 使用共享资源的并发执行不恰当同步问题（竞争条件）

admin

0
文章

0
评论

2023-12-01 13:55:23 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

phoenixcontact fl_switch_smcs_16tx_firmware 使用共享资源的并发执行不恰当同步问题（竞争条件）

CVE编号

CVE-2021-21005

利用情况

暂无

补丁情况

N/A

披露时间

2021-06-26

漏洞描述

In Phoenix Contact FL SWITCH SMCS series products in multiple versions if an attacker sends a hand-crafted TCP-Packet with the Urgent-Flag set and the Urgent-Pointer set to 0, the network stack will crash. The device needs to be rebooted afterwards.

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
https://cert.vde.com/en-us/advisories/vde-2021-023

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	系统	phoenixcontact	fl_nat_smn_8tx-m_firmware	*		Up to (including) 4.63
	运行在以下环境
	系统	phoenixcontact	fl_nat_smn_8tx_firmware	*		Up to (including) 4.63
	运行在以下环境
	系统	phoenixcontact	fl_switch_smcs_14tx/2fx-sm_firmware	*		Up to (including) 4.70
	运行在以下环境
	系统	phoenixcontact	fl_switch_smcs_14tx/2fx_firmware	*		Up to (including) 4.70
	运行在以下环境
	系统	phoenixcontact	fl_switch_smcs_16tx_firmware	*		Up to (including) 4.70
	运行在以下环境
	系统	phoenixcontact	fl_switch_smcs_4tx-pn_firmware	*		Up to (including) 4.70
	运行在以下环境
	系统	phoenixcontact	fl_switch_smcs_6gt/2sfp_firmware	*		Up to (including) 4.70
	运行在以下环境
	系统	phoenixcontact	fl_switch_smcs_6tx/2sfp_firmware	*		Up to (including) 4.70
	运行在以下环境
	系统	phoenixcontact	fl_switch_smcs_8gt_firmware	*		Up to (including) 4.70
	运行在以下环境
	系统	phoenixcontact	fl_switch_smcs_8tx-pn_firmware	*		Up to (including) 4.70
	运行在以下环境
	系统	phoenixcontact	fl_switch_smcs_8tx_firmware	*		Up to (including) 4.70
	运行在以下环境
	系统	phoenixcontact	fl_switch_smn_6tx/2fx_firmware	*		Up to (including) 4.70
	运行在以下环境
	系统	phoenixcontact	fl_switch_smn_6tx/2fx_sm_firmware	*		Up to (including) 4.70
	运行在以下环境
	系统	phoenixcontact	fl_switch_smn_6tx/2pof-pn_firmware	*		Up to (including) 4.70
	运行在以下环境
	系统	phoenixcontact	fl_switch_smn_8tx-pn_firmware	*		Up to (including) 4.70
	运行在以下环境
	硬件	phoenixcontact	fl_nat_smn_8tx	-	-
	运行在以下环境
	硬件	phoenixcontact	fl_nat_smn_8tx-m	-	-
	运行在以下环境
	硬件	phoenixcontact	fl_switch_smcs_14tx/2fx	-	-
	运行在以下环境
	硬件	phoenixcontact	fl_switch_smcs_14tx/2fx-sm	-	-
	运行在以下环境
	硬件	phoenixcontact	fl_switch_smcs_16tx	-	-
	运行在以下环境
	硬件	phoenixcontact	fl_switch_smcs_4tx-pn	-	-
	运行在以下环境
	硬件	phoenixcontact	fl_switch_smcs_6gt/2sfp	-	-
	运行在以下环境
	硬件	phoenixcontact	fl_switch_smcs_6tx/2sfp	-	-
	运行在以下环境
	硬件	phoenixcontact	fl_switch_smcs_8gt	-	-
	运行在以下环境
	硬件	phoenixcontact	fl_switch_smcs_8tx	-	-
	运行在以下环境
	硬件	phoenixcontact	fl_switch_smcs_8tx-pn	-	-
	运行在以下环境
	硬件	phoenixcontact	fl_switch_smn_6tx/2fx	-	-
	运行在以下环境
	硬件	phoenixcontact	fl_switch_smn_6tx/2fx_sm	-	-
	运行在以下环境
	硬件	phoenixcontact	fl_switch_smn_6tx/2pof-pn	-	-
	运行在以下环境
	硬件	phoenixcontact	fl_switch_smn_8tx-pn	-	-