NVD - CVE-2021-29242

Vulnerability Change Records for CVE-2021-29242

Change History

Initial Analysis by NIST 5/13/2021 4:23:31 PM

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:a:codesys:conrol_runtime_system_toolkit::::::::* versions from (including) 3.0 up to (excluding) 3.5.17.0 cpe:2.3:a:codesys:control_for_beaglebone_sl::::::::* versions from (including) 3.0 up to (excluding) 4.1.0.0 cpe:2.3:a:codesys:control_for_empc-a\/imx6_sl::::::::* versions from (including) 3.0 up to (excluding) 4.1.0.0 cpe:2.3:a:codesys:control_for_iot2000_sl::::::::* versions from (including) 3.0 up to (excluding) 4.1.0.0 cpe:2.3:a:codesys:control_for_linux_arm_sl::::::::* versions from (including) 3.0 up to (excluding) 4.1.0.0 cpe:2.3:a:codesys:control_for_linux_sl::::::::* versions from (including) 3.0 up to (excluding) 4.1.0.0 cpe:2.3:a:codesys:control_for_pfc100_sl::::::::* versions from (including) 3.0 up to (excluding) 4.1.0.0 cpe:2.3:a:codesys:control_for_pfc200_sl::::::::* versions from (including) 3.0 up to (excluding) 4.1.0.0 cpe:2.3:a:codesys:control_for_plcnext_sl::::::::* versions from (including) 3.0 up to (excluding) 4.1.0.0 cpe:2.3:a:codesys:control_for_raspberry_pi_sl::::::::* versions from (including) 3.0 up to (excluding) 4.1.0.0 cpe:2.3:a:codesys:control_for_wago_touch_panels_600_sl::::::::* versions from (including) 3.0 up to (excluding) 4.1.0.0 cpe:2.3:a:codesys:control_rte::::::::* versions from (including) 3.0 up to (excluding) 3.5.17.0 cpe:2.3:a:codesys:control_rte::::::beckhoff_cx:: versions from (including) 3.0 up to (excluding) 3.5.17.0 cpe:2.3:a:codesys:control_win::::::::* versions from (including) 3.0 up to (excluding) 3.5.17.0 cpe:2.3:a:codesys:edge_gateway::::::windows:: versions from (including) 3.0 up to (excluding) 3.5.17.0 cpe:2.3:a:codesys:edge_gateway::::::linux:: versions from (including) 3.0 up to (excluding) 4.1.0.0 cpe:2.3:a:codesys:embedded_target_visu_toolkit::::::::* versions from (including) 3.0 up to (excluding) 3.5.17.0 cpe:2.3:a:codesys:gateway::::::::* versions from (including) 3.0 up to (excluding) 3.5.17.0 cpe:2.3:a:codesys:hmi::::::::* versions from (including) 3.0 up to (excluding) 3.5.17.0 cpe:2.3:a:codesys:opc_server::::::::* versions from (including) 3.0 up to (excluding) 3.5.17.0 cpe:2.3:a:codesys:plchandler::::::::* versions from (including) 3.0 up to (excluding) 3.5.17.0 cpe:2.3:a:codesys:remote_target_visu_toolkit::::::::* versions from (including) 3.0 up to (excluding) 3.5.17.0 cpe:2.3:a:codesys:safety_sil::::::::* versions from (including) 3.0 up to (excluding) 3.5.17.0 cpe:2.3:a:codesys:simulation_runtime::::::::* versions from (including) 3.0 up to (excluding) 3.5.17.0
Added	CVSS V2		NIST (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Added	CVSS V3.1		NIST AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Added	CWE		NIST CWE-20
Changed	Reference Type	https://customers.codesys.com/index.php No Types Assigned	https://customers.codesys.com/index.php Permissions Required, Vendor Advisory
Changed	Reference Type	https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=14640&token=623b6fceb0579ef0f7505e29beefa5b3f8ac7873&download= No Types Assigned	https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=14640&token=623b6fceb0579ef0f7505e29beefa5b3f8ac7873&download= Vendor Advisory
Changed	Reference Type	https://www.codesys.com/security/security-reports.html No Types Assigned	https://www.codesys.com/security/security-reports.html Vendor Advisory