CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-38432

FATEK Automation Communication Server Versions 1.13 and prior lacks proper validation of user-supplied data, which could result in a stack-based buffer overflow condition and allow an attacker to remotely execute code.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 73.8%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://us-cert.cisa.gov/ics/advisories/icsa-21-280-07
https://us-cert.cisa.gov/ics/advisories/icsa-21-280-07

Products affected by CVE-2021-38432

Fatek » Communication Server » Version: N/A

cpe:2.3:h:fatek:communication_server:-
Fatek » Communication Server Firmware » Version: Any

cpe:2.3:o:fatek:communication_server_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-38432

Products

Pricing

Contact Us