Vulnerability in Siemens Apogee Pxc Compact (Bacnet)
CVE-2021-25677
A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5.5), APOGEE PXC Modular (P2 Ethernet) (A…
EPSS: 0.004 (60.1th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C.
Affected products
- Siemens Apogee Pxc Compact (Bacnet) — versions All versions < V3.5.5
- Siemens Apogee Pxc Compact (P2 Ethernet) — versions All versions < V2.8.20
- Siemens Apogee Pxc Modular (Bacnet) — versions All versions < V3.5.5
- Siemens Apogee Pxc Modular (P2 Ethernet) — versions All versions < V2.8.20
- Siemens Nucleus Net — versions All versions
- Siemens Nucleus Readystart V3 — versions All versions < V2017.02.3, All versions < V2017.02.4
- Siemens Nucleus Readystart V4 — versions All versions < V4.1.0
- Siemens Nucleus Source Code — versions Versions including affected DNS modules
- Siemens Simotics Connect 400 — versions All versions < V0.5.0.0, All versions >= V0.5.0.0 < V1.0.0.0
- Siemens Talon Tc Compact (Bacnet) — versions All versions < V3.5.5
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2021-25677?
- CVE-2021-25677 is a medium-severity vulnerability in Siemens Apogee Pxc Compact (Bacnet), classified under Use of Insufficiently Random Values. CVSS score: 5.3/10. Published 2021-04-22.
- How severe is CVE-2021-25677?
- Medium severity. CVSS v3 base score is 5.3 out of 10.