Buffer overflow in Fanuc R-30ia, R-30ia Mate

CVE-2021-32998

The FANUC R-30iA and R-30iB series controllers are vulnerable to an out-of-bounds write, which may allow an attacker to remotely execute arbitrary code. INIT START/restore from backup required.

Vulnerability class: Buffer Overflow

EPSS: 0.004 (60.1th percentile) — read the EPSS interpretation.

Affected products

Fanuc R-30ia, R-30ia Mate — versions v7
Fanuc R-30ib Plus, Mate Compact Mini Plus — versions V9
Fanuc R-30ib, R-30ib Mate, Compact — versions v8

Weakness classification (CWE)

CWE-787 — Out-of-bounds Write

References

www.cisa.gov/uscert/ics/advisories/icsa-21-243-02 (x_refsource_MISC)