robertguetzkow/CVE-2021-37740

Releases1

Frequency

Last Release about 4 years ago

Stars6

PoC for DoS vulnerability CVE-2021-37740 in firmware v3.0.3 of SCN-IP100.03 and SCN-IP000.03 by MDT. The bug has been fixed in firmware v3.0.4.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-37740 ↗	Apr 20, 2022Wednesday, 20 April 2022, 20:15	7.5 HIGH	7.8 HIGH
A denial of service vulnerability exists in MDT's firmware for the KNXnet/IP Secure router SCN-IP100.03 and KNX IP interface SCN-IP000.03 before v3.0.4, that allows a remote attacker to turn the device unresponsive to all requests on the KNXnet/IP Secure layer, until the device is rebooted, via a SESSION_REQUEST frame with a modified total length field.