CVE-2021-25845

Published May 10, 2021
Last updated 3 years ago
Overview

Description: Improper validation of the ChassisID TLV in userdisk/vport_lldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows attackers to cause a denial of service due to a NULL pointer dereference via a crafted lldp packet.
Source: cve@mitre.org
NVD status: Analyzed
Risk scores

CVSS 3.1

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH
CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P
Weaknesses

nvd@nist.gov: CWE-476
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v26m:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7AB3C716-2ECC-44B7-9AD9-7F198ABE7B24"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v26m_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88DC75E9-7AA1-4A98-8427-EAAC18C407BB"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v36m-t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B868CC06-2F7F-4951-88BF-37488D52FC55"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v36m-t_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0FDF1FF1-E08B-494F-A4B4-1B20773779E8"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v36m-ct:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4A2B0E14-196A-47C2-A721-7DBF15E5F06F"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v36m-ct_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C2EBCC8B-928A-4B72-999E-CBC263125494"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v36m-ct-t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6A855BB2-C047-452E-9DD9-2C3233FAB568"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v36m-ct-t_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "52D00E77-89E8-4D7B-98BB-BC99DAA8A82E"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v42m:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "729825E5-E15A-487B-9FDD-153ED5488BA9"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v42m_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "37F8DEE4-DE80-4D12-BE6F-F4C8CA410761"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v42m-t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D940BF75-4F82-4D20-991E-BD4EB0F4ED1C"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v42m-t_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4A348213-464E-4BBF-9F37-1A79DC20D751"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v42m-ct:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1989369B-A59E-4281-8896-5EC6C6B035A7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v42m-ct_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7B789500-1D28-47E2-8EEF-13C73EC9F9F8"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v42m-ct-t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "9EAB1E29-5138-4BDA-A314-4BCA75599600"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v42m-ct-t_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "96D1D623-E191-48F9-8953-E85AA965A510"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v60m_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A41281E5-B0FB-4845-B535-5BABDD1D96E0"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v60m:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "65C52196-9B1A-45BC-B14F-E2A1D7DDCDE8"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v60m-t_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "972C3C17-7006-47A6-987D-D2E5D03FD3B3"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v60m-t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6C7E4C20-9544-4B83-8113-36F4AC9D55CD"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v60m-ct_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C27640F7-F681-487F-BDE0-C503AFF58E42"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v60m-ct:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EF751858-BDA7-4771-80D1-72106C418C96"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v60m-ct-t_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D9DE41EE-9743-4F6A-8655-F92AE8F7451C"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v60m-ct-t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7CE0C80E-8849-4271-90F6-813371C84AE8"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v80m_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "797098F7-9C84-4DDC-B17D-548924501348"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v80m:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4DBA1F22-198C-4DCB-9A82-D7B350B27B33"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v80m-t_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E62E2CDF-A82D-4958-B695-4AA828303996"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v80m-t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "442FAF51-C13B-47B9-BC98-287778244A55"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v80m-ct_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F3CDAF9-E13E-4F43-8149-3285AE8A4A83"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v80m-ct:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "89117711-F723-4AC6-AB0E-40B71CDB3E0F"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:moxa:vport_06ec-2v80m-ct-t_firmware:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5832C6E5-54CC-471E-85DE-95118ECA3B42"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:moxa:vport_06ec-2v80m-ct-t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E07DB8C8-41D7-462E-9AFD-C28ACBB3E0F5"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]
Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References
