Rewterz Threat Alert – LokiBot – Fresh IOCs
February 11, 2021Rewterz Threat Alert – Chinese Cyber Espionage Group BlackTech Using BendyBear Shellcode
February 11, 2021Rewterz Threat Alert – LokiBot – Fresh IOCs
February 11, 2021Rewterz Threat Alert – Chinese Cyber Espionage Group BlackTech Using BendyBear Shellcode
February 11, 2021Severity
Medium
Analysis Summary
CVE-2021-25666
Siemens SCALANCE W780 and W740 are vulnerable to a denial of service, caused by improper input validation. By sending specially-crafted packets through the ARP protocol, a remote attacker could exploit this vulnerability to prevent device from operating normally for a short period, and results in a denial of service condition.
Impact
Denial of service
Affected Vendors
Siemens
Affected Products
- Siemens SCALANCE W780
- Siemens SCALANCE W740
Remediation
Refer to Siemens Security Advisory SSA-686152 for patch, upgrade or suggested workaround information.