Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.6
CVSSv2

CVE-2021-38448

Published: 22/11/2021 Updated: 10/05/2022
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.6 | Impact Score: 6 | Exploitability Score: 0.9
VMScore: 409
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Symbio 700

Vulnerability Summary

The affected controllers do not properly sanitize the input containing code syntax. As a result, an attacker could craft code to alter the intended controller flow of the software.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

trane symbio_700

trane symbio_800

ICS Advisories

Trane Symbio (Update B)
Critical Infrastructure Sectors: Critical Manufacturing

References

CWE-94https://us-cert.cisa.gov/ics/advisories/icsa-21-266-01https://nvd.nist.govhttps://www.cisa.gov/uscert/ics/advisories/icsa-21-266-01
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322CVE-2006-4304wirelessCVE-2023-23022local file inclusionCVE-2024-27058CVE-2024-33820open redirectCVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook