Vulnerabilites related to fanuc - r-30ib_compact_plus_firmware
CVE-2021-32996 (GCVE-0-2021-32996)
Vulnerability from cvelistv5
Published
2022-01-07 22:39
Modified
2025-04-17 18:48
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-192 - INTEGER COERCION ERROR
Summary
The FANUC R-30iA and R-30iB series controllers are vulnerable to integer coercion errors, which cause the device to crash. A restart is required.
References
| ► | URL | Tags | |||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ► | FANUC | R-30iA, R-30iA Mate |
Version: v7 < |
|||||||||||
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T23:42:19.109Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2021-32996",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-17T17:53:39.607407Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-681",
"description": "CWE-681 Incorrect Conversion between Numeric Types",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-04-17T18:48:35.554Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "R-30iA, R-30iA Mate",
"vendor": "FANUC",
"versions": [
{
"lessThanOrEqual": "v7.70",
"status": "affected",
"version": "v7",
"versionType": "custom"
}
]
},
{
"product": "R-30iB, R-30iB Mate, R-30iB Compact",
"vendor": "FANUC",
"versions": [
{
"lessThanOrEqual": "v8.36",
"status": "affected",
"version": "v8",
"versionType": "custom"
}
]
},
{
"product": "R-30iB Plus, R-30iB Mate Plus, R-30iB Compact Plus, R-30iB Mini Plus",
"vendor": "FANUC",
"versions": [
{
"lessThanOrEqual": "v9.40",
"status": "affected",
"version": "V9",
"versionType": "custom"
}
]
}
],
"datePublic": "2021-12-07T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The FANUC R-30iA and R-30iB series controllers are vulnerable to integer coercion errors, which cause the device to crash. A restart is required."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-192",
"description": "CWE-192 INTEGER COERCION ERROR",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-01-07T22:39:08.000Z",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02"
}
],
"source": {
"discovery": "UNKNOWN"
},
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"DATE_PUBLIC": "2021-12-07T17:00:00.000Z",
"ID": "CVE-2021-32996",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "R-30iA, R-30iA Mate",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "v7",
"version_value": "v7.70"
}
]
}
},
{
"product_name": "R-30iB, R-30iB Mate, R-30iB Compact",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "v8",
"version_value": "v8.36"
}
]
}
},
{
"product_name": "R-30iB Plus, R-30iB Mate Plus, R-30iB Compact Plus, R-30iB Mini Plus",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "V9",
"version_value": "v9.40"
}
]
}
}
]
},
"vendor_name": "FANUC"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The FANUC R-30iA and R-30iB series controllers are vulnerable to integer coercion errors, which cause the device to crash. A restart is required."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-192 INTEGER COERCION ERROR"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02",
"refsource": "MISC",
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02"
}
]
},
"source": {
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2021-32996",
"datePublished": "2022-01-07T22:39:08.821Z",
"dateReserved": "2021-05-13T00:00:00.000Z",
"dateUpdated": "2025-04-17T18:48:35.554Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-32998 (GCVE-0-2021-32998)
Vulnerability from cvelistv5
Published
2022-01-07 22:39
Modified
2025-04-17 18:48
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-787 - Out-of-bounds Write
Summary
The FANUC R-30iA and R-30iB series controllers are vulnerable to an out-of-bounds write, which may allow an attacker to remotely execute arbitrary code. INIT START/restore from backup required.
References
| ► | URL | Tags | |||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ► | FANUC | R-30iA, R-30iA Mate |
Version: v7 < |
|||||||||||
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T23:42:19.126Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2021-32998",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-17T17:52:49.553719Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-04-17T18:48:26.223Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "R-30iA, R-30iA Mate",
"vendor": "FANUC",
"versions": [
{
"lessThanOrEqual": "v7.70",
"status": "affected",
"version": "v7",
"versionType": "custom"
}
]
},
{
"product": "R-30iB, R-30iB Mate, R-30iB Compact",
"vendor": "FANUC",
"versions": [
{
"lessThanOrEqual": "v8.36",
"status": "affected",
"version": "v8",
"versionType": "custom"
}
]
},
{
"product": "R-30iB Plus, R-30iB Mate Plus, R-30iB Compact Plus, R-30iB Mini Plus",
"vendor": "FANUC",
"versions": [
{
"lessThanOrEqual": "v9.40",
"status": "affected",
"version": "V9",
"versionType": "custom"
}
]
}
],
"datePublic": "2021-12-07T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The FANUC R-30iA and R-30iB series controllers are vulnerable to an out-of-bounds write, which may allow an attacker to remotely execute arbitrary code. INIT START/restore from backup required."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-787",
"description": "CWE-787 Out-of-bounds Write",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-01-07T22:39:09.000Z",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02"
}
],
"source": {
"discovery": "UNKNOWN"
},
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"DATE_PUBLIC": "2021-12-07T17:00:00.000Z",
"ID": "CVE-2021-32998",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "R-30iA, R-30iA Mate",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "v7",
"version_value": "v7.70"
}
]
}
},
{
"product_name": "R-30iB, R-30iB Mate, R-30iB Compact",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "v8",
"version_value": "v8.36"
}
]
}
},
{
"product_name": "R-30iB Plus, R-30iB Mate Plus, R-30iB Compact Plus, R-30iB Mini Plus",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "V9",
"version_value": "v9.40"
}
]
}
}
]
},
"vendor_name": "FANUC"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The FANUC R-30iA and R-30iB series controllers are vulnerable to an out-of-bounds write, which may allow an attacker to remotely execute arbitrary code. INIT START/restore from backup required."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-787 Out-of-bounds Write"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02",
"refsource": "MISC",
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02"
}
]
},
"source": {
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2021-32998",
"datePublished": "2022-01-07T22:39:09.663Z",
"dateReserved": "2021-05-13T00:00:00.000Z",
"dateUpdated": "2025-04-17T18:48:26.223Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
Vulnerability from fkie_nvd
Published
2022-01-10 14:10
Modified
2025-04-17 19:15
Severity ?
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
The FANUC R-30iA and R-30iB series controllers are vulnerable to integer coercion errors, which cause the device to crash. A restart is required.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| ics-cert@hq.dhs.gov | https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02 | Third Party Advisory, US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02 | Third Party Advisory, US Government Resource |
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_firmware:7.20:*:*:*:*:*:*:*",
"matchCriteriaId": "C5330143-E90D-4A39-AB80-6355339C505C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_firmware:7.30:*:*:*:*:*:*:*",
"matchCriteriaId": "6F521607-1BD1-464B-B84E-87C312FB1458",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_firmware:7.40:*:*:*:*:*:*:*",
"matchCriteriaId": "0A76373A-B737-4FCD-97DE-403185FE3484",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_firmware:7.43:*:*:*:*:*:*:*",
"matchCriteriaId": "C1A1AA6E-B4C1-4D1F-BBD5-479BCA0FCDB5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_firmware:7.50:*:*:*:*:*:*:*",
"matchCriteriaId": "AA808E46-5807-43CF-8B5A-415BE815F1DD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_firmware:7.63:*:*:*:*:*:*:*",
"matchCriteriaId": "47F0E0F7-D634-47B1-8C3A-FF5B6701FF63",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_firmware:7.70:*:*:*:*:*:*:*",
"matchCriteriaId": "57979C61-590D-48F6-B81C-8FFC38753943",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ia:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1C1FCE2E-7FB5-485F-9988-0E60E0920E55",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_mate_firmware:7.20:*:*:*:*:*:*:*",
"matchCriteriaId": "A0BFC3FD-5DC5-4A64-8C9A-7408FF091BD2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_mate_firmware:7.30:*:*:*:*:*:*:*",
"matchCriteriaId": "839A495D-487D-4A07-A486-FF06646DD319",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_mate_firmware:7.40:*:*:*:*:*:*:*",
"matchCriteriaId": "64D21270-85D1-469B-8043-4F28A90C924F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_mate_firmware:7.43:*:*:*:*:*:*:*",
"matchCriteriaId": "D7F6094F-1A32-4D98-81FC-1B985BEECAB9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_mate_firmware:7.50:*:*:*:*:*:*:*",
"matchCriteriaId": "0D5246EF-BCB6-461F-A912-44B681501BB7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_mate_firmware:7.63:*:*:*:*:*:*:*",
"matchCriteriaId": "C83B4133-EE21-4B5C-BBEE-B179F384254B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_mate_firmware:7.70:*:*:*:*:*:*:*",
"matchCriteriaId": "BA180D09-18ED-4656-B460-FCDCD39AB4A0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ia_mate:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4DCE050F-1062-4456-8C4E-6F9C649D55F5",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.10:*:*:*:*:*:*:*",
"matchCriteriaId": "6975C033-7695-44EE-9C9A-A81069C365CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.13:*:*:*:*:*:*:*",
"matchCriteriaId": "AC553460-B492-4061-9322-1876E6E06008",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.20:*:*:*:*:*:*:*",
"matchCriteriaId": "A32EC2AD-BA02-496E-983C-65BBFC77892E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.23:*:*:*:*:*:*:*",
"matchCriteriaId": "0FC3B973-F784-4407-991C-8A7815BE0A57",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.26:*:*:*:*:*:*:*",
"matchCriteriaId": "C5ECC95E-8297-4539-B365-D6DFB268E91D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.30:*:*:*:*:*:*:*",
"matchCriteriaId": "45E35D08-9A90-47AD-BFCA-F9CB369B042E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.33:*:*:*:*:*:*:*",
"matchCriteriaId": "C6AA7F96-98BB-4F72-8EE7-D1BA529AE399",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.36:*:*:*:*:*:*:*",
"matchCriteriaId": "59024A73-BAE6-493C-BF8D-5C1D36A84234",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ib_mate:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E32A68FE-FF9E-4FC5-B4DD-67242BC632B5",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.10:*:*:*:*:*:*:*",
"matchCriteriaId": "E3C91206-B54C-4E41-96AF-7A59CFBDD516",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.13:*:*:*:*:*:*:*",
"matchCriteriaId": "2B5C56CC-50A7-4697-8504-F30137C1B5C5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.20:*:*:*:*:*:*:*",
"matchCriteriaId": "90E75BF9-7FBE-47C7-AA07-2C440D4E10E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.23:*:*:*:*:*:*:*",
"matchCriteriaId": "BC936B5A-CC17-42E5-B5D5-203298A1E01F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.26:*:*:*:*:*:*:*",
"matchCriteriaId": "864EEF01-51CB-4BB4-8808-460DCB0DAEE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.30:*:*:*:*:*:*:*",
"matchCriteriaId": "5DAF3A19-D4A4-41E4-9B29-8436EF6A83D0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.33:*:*:*:*:*:*:*",
"matchCriteriaId": "BC3EB58D-9719-4AD8-8788-E394DBF776C8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.36:*:*:*:*:*:*:*",
"matchCriteriaId": "81C33E27-1FD6-4353-B4E5-99A225DEF0AE",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ib_compact:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1DAB826E-541C-4A73-B9E1-FE6B002111CD",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.10:*:*:*:*:*:*:*",
"matchCriteriaId": "3C52D665-0E74-488A-9988-CA033BA5E951",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.13:*:*:*:*:*:*:*",
"matchCriteriaId": "46AF6F6E-A162-4850-A0A9-C74AC38A94D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.20:*:*:*:*:*:*:*",
"matchCriteriaId": "F2F10B87-9412-4007-91CB-E3D95525758B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.23:*:*:*:*:*:*:*",
"matchCriteriaId": "1F54846C-FBA4-456D-B2D3-341828929FD0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.26:*:*:*:*:*:*:*",
"matchCriteriaId": "0BAAF98F-A594-47B0-8261-09BAB2AD17FA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.30:*:*:*:*:*:*:*",
"matchCriteriaId": "FDED6882-2C06-4D67-9552-A1B6938229BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.33:*:*:*:*:*:*:*",
"matchCriteriaId": "14A68621-6216-4CD7-916C-E31D783F0DE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.36:*:*:*:*:*:*:*",
"matchCriteriaId": "863A7BC5-C0F5-4528-8A21-D04D9D31AE97",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ib:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8DF78494-4464-409E-85CC-2DEEBDC5D2E6",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_plus_firmware:9.10:*:*:*:*:*:*:*",
"matchCriteriaId": "31FE32D8-4D63-49B5-92D2-FE41D4DEDD7C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_plus_firmware:9.13:*:*:*:*:*:*:*",
"matchCriteriaId": "A5456471-AE98-438A-890F-7FB5C8A09405",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_plus_firmware:9.16:*:*:*:*:*:*:*",
"matchCriteriaId": "9170D349-E0D7-46B4-80E8-83506A0F5D78",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_plus_firmware:9.30:*:*:*:*:*:*:*",
"matchCriteriaId": "85554BF1-D5E4-4379-91C5-356490BB49DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_plus_firmware:9.36:*:*:*:*:*:*:*",
"matchCriteriaId": "D421824D-3F11-443C-8E5D-4B294A732B97",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_plus_firmware:9.40:*:*:*:*:*:*:*",
"matchCriteriaId": "4FB317E6-15F4-4AD3-A951-0C9D23784478",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ib_mate_plus:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FFB97399-05B1-4BAE-88D9-F7C4E73A4C59",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_plus_firmware:9.10:*:*:*:*:*:*:*",
"matchCriteriaId": "B96D5343-FDE7-4065-AE1F-86C409F61E05",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_plus_firmware:9.13:*:*:*:*:*:*:*",
"matchCriteriaId": "20002FF3-03F6-4BC1-97CC-7D41A453F961",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_plus_firmware:9.16:*:*:*:*:*:*:*",
"matchCriteriaId": "D9901D6B-3D0C-4D8E-B8F7-5CA0005239AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_plus_firmware:9.30:*:*:*:*:*:*:*",
"matchCriteriaId": "D7FB9180-E37A-4722-8F09-D35891396DA6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_plus_firmware:9.36:*:*:*:*:*:*:*",
"matchCriteriaId": "FBAC639A-4554-4335-BA8E-A40D07979E5B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_plus_firmware:9.40:*:*:*:*:*:*:*",
"matchCriteriaId": "2A26BA06-0920-49B7-B4D2-EB70C9DB1DDB",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ib_compact_plus:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FE1F5E5B-769F-4CE7-8BEC-8013981AE009",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mini_plus_firmware:9.10:*:*:*:*:*:*:*",
"matchCriteriaId": "A598FBB7-4A1D-45D4-BC93-2F9C48439BE7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mini_plus_firmware:9.13:*:*:*:*:*:*:*",
"matchCriteriaId": "BA331696-13AA-4588-8EB8-B9DDDE61C853",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mini_plus_firmware:9.16:*:*:*:*:*:*:*",
"matchCriteriaId": "F8AF13EC-758F-447D-8B82-2B34538B200C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mini_plus_firmware:9.30:*:*:*:*:*:*:*",
"matchCriteriaId": "FAE2E2FC-88B4-4219-9E34-F1EE0639A65D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mini_plus_firmware:9.36:*:*:*:*:*:*:*",
"matchCriteriaId": "A347C273-D19F-40A4-99B4-86D33032F257",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mini_plus_firmware:9.40:*:*:*:*:*:*:*",
"matchCriteriaId": "98274BF3-58B0-453F-B479-654600C81085",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ib_mini_plus:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E4F1334D-51B0-42D1-8427-1E9365F3D526",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_plus_firmware:9.10:*:*:*:*:*:*:*",
"matchCriteriaId": "E518BE35-F3C5-4D88-807B-DB3444DB36F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_plus_firmware:9.13:*:*:*:*:*:*:*",
"matchCriteriaId": "1794F756-AB92-4D28-957B-46736BDA5ECB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_plus_firmware:9.16:*:*:*:*:*:*:*",
"matchCriteriaId": "F3A3DC78-2D49-499A-B5A3-4AF612D34AF9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_plus_firmware:9.30:*:*:*:*:*:*:*",
"matchCriteriaId": "E4A083CB-B642-4437-8CF2-10EF199C260D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_plus_firmware:9.36:*:*:*:*:*:*:*",
"matchCriteriaId": "82ADA892-078E-4BEC-A716-667BEEBAA813",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_plus_firmware:9.40:*:*:*:*:*:*:*",
"matchCriteriaId": "E7AA5F91-6F05-4BA7-872F-B8DFF7F72D94",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ib_plus:-:*:*:*:*:*:*:*",
"matchCriteriaId": "91FB7C00-AD90-4162-9EA9-8B2572AA5BDD",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The FANUC R-30iA and R-30iB series controllers are vulnerable to integer coercion errors, which cause the device to crash. A restart is required."
},
{
"lang": "es",
"value": "Los controladores de la serie R-30iA y R-30iB de FANUC son vulnerables a errores de coerci\u00f3n de enteros, que causan un bloqueo del dispositivo. Es requerido un reinicio"
}
],
"id": "CVE-2021-32996",
"lastModified": "2025-04-17T19:15:50.777",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2022-01-10T14:10:17.270",
"references": [
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02"
}
],
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-192"
}
],
"source": "ics-cert@hq.dhs.gov",
"type": "Primary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-681"
}
],
"source": "nvd@nist.gov",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-681"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2022-01-10 14:10
Modified
2025-04-17 19:15
Severity ?
7.4 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H
7.4 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H
7.4 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H
Summary
The FANUC R-30iA and R-30iB series controllers are vulnerable to an out-of-bounds write, which may allow an attacker to remotely execute arbitrary code. INIT START/restore from backup required.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| ics-cert@hq.dhs.gov | https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02 | Third Party Advisory, US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02 | Third Party Advisory, US Government Resource |
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_firmware:7.20:*:*:*:*:*:*:*",
"matchCriteriaId": "C5330143-E90D-4A39-AB80-6355339C505C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_firmware:7.30:*:*:*:*:*:*:*",
"matchCriteriaId": "6F521607-1BD1-464B-B84E-87C312FB1458",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_firmware:7.40:*:*:*:*:*:*:*",
"matchCriteriaId": "0A76373A-B737-4FCD-97DE-403185FE3484",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_firmware:7.43:*:*:*:*:*:*:*",
"matchCriteriaId": "C1A1AA6E-B4C1-4D1F-BBD5-479BCA0FCDB5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_firmware:7.50:*:*:*:*:*:*:*",
"matchCriteriaId": "AA808E46-5807-43CF-8B5A-415BE815F1DD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_firmware:7.63:*:*:*:*:*:*:*",
"matchCriteriaId": "47F0E0F7-D634-47B1-8C3A-FF5B6701FF63",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_firmware:7.70:*:*:*:*:*:*:*",
"matchCriteriaId": "57979C61-590D-48F6-B81C-8FFC38753943",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ia:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1C1FCE2E-7FB5-485F-9988-0E60E0920E55",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_mate_firmware:7.20:*:*:*:*:*:*:*",
"matchCriteriaId": "A0BFC3FD-5DC5-4A64-8C9A-7408FF091BD2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_mate_firmware:7.30:*:*:*:*:*:*:*",
"matchCriteriaId": "839A495D-487D-4A07-A486-FF06646DD319",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_mate_firmware:7.40:*:*:*:*:*:*:*",
"matchCriteriaId": "64D21270-85D1-469B-8043-4F28A90C924F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_mate_firmware:7.43:*:*:*:*:*:*:*",
"matchCriteriaId": "D7F6094F-1A32-4D98-81FC-1B985BEECAB9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_mate_firmware:7.50:*:*:*:*:*:*:*",
"matchCriteriaId": "0D5246EF-BCB6-461F-A912-44B681501BB7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_mate_firmware:7.63:*:*:*:*:*:*:*",
"matchCriteriaId": "C83B4133-EE21-4B5C-BBEE-B179F384254B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ia_mate_firmware:7.70:*:*:*:*:*:*:*",
"matchCriteriaId": "BA180D09-18ED-4656-B460-FCDCD39AB4A0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ia_mate:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4DCE050F-1062-4456-8C4E-6F9C649D55F5",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.10:*:*:*:*:*:*:*",
"matchCriteriaId": "6975C033-7695-44EE-9C9A-A81069C365CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.13:*:*:*:*:*:*:*",
"matchCriteriaId": "AC553460-B492-4061-9322-1876E6E06008",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.20:*:*:*:*:*:*:*",
"matchCriteriaId": "A32EC2AD-BA02-496E-983C-65BBFC77892E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.23:*:*:*:*:*:*:*",
"matchCriteriaId": "0FC3B973-F784-4407-991C-8A7815BE0A57",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.26:*:*:*:*:*:*:*",
"matchCriteriaId": "C5ECC95E-8297-4539-B365-D6DFB268E91D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.30:*:*:*:*:*:*:*",
"matchCriteriaId": "45E35D08-9A90-47AD-BFCA-F9CB369B042E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.33:*:*:*:*:*:*:*",
"matchCriteriaId": "C6AA7F96-98BB-4F72-8EE7-D1BA529AE399",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_firmware:8.36:*:*:*:*:*:*:*",
"matchCriteriaId": "59024A73-BAE6-493C-BF8D-5C1D36A84234",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ib_mate:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E32A68FE-FF9E-4FC5-B4DD-67242BC632B5",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.10:*:*:*:*:*:*:*",
"matchCriteriaId": "E3C91206-B54C-4E41-96AF-7A59CFBDD516",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.13:*:*:*:*:*:*:*",
"matchCriteriaId": "2B5C56CC-50A7-4697-8504-F30137C1B5C5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.20:*:*:*:*:*:*:*",
"matchCriteriaId": "90E75BF9-7FBE-47C7-AA07-2C440D4E10E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.23:*:*:*:*:*:*:*",
"matchCriteriaId": "BC936B5A-CC17-42E5-B5D5-203298A1E01F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.26:*:*:*:*:*:*:*",
"matchCriteriaId": "864EEF01-51CB-4BB4-8808-460DCB0DAEE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.30:*:*:*:*:*:*:*",
"matchCriteriaId": "5DAF3A19-D4A4-41E4-9B29-8436EF6A83D0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.33:*:*:*:*:*:*:*",
"matchCriteriaId": "BC3EB58D-9719-4AD8-8788-E394DBF776C8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_firmware:8.36:*:*:*:*:*:*:*",
"matchCriteriaId": "81C33E27-1FD6-4353-B4E5-99A225DEF0AE",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ib_compact:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1DAB826E-541C-4A73-B9E1-FE6B002111CD",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.10:*:*:*:*:*:*:*",
"matchCriteriaId": "3C52D665-0E74-488A-9988-CA033BA5E951",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.13:*:*:*:*:*:*:*",
"matchCriteriaId": "46AF6F6E-A162-4850-A0A9-C74AC38A94D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.20:*:*:*:*:*:*:*",
"matchCriteriaId": "F2F10B87-9412-4007-91CB-E3D95525758B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.23:*:*:*:*:*:*:*",
"matchCriteriaId": "1F54846C-FBA4-456D-B2D3-341828929FD0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.26:*:*:*:*:*:*:*",
"matchCriteriaId": "0BAAF98F-A594-47B0-8261-09BAB2AD17FA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.30:*:*:*:*:*:*:*",
"matchCriteriaId": "FDED6882-2C06-4D67-9552-A1B6938229BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.33:*:*:*:*:*:*:*",
"matchCriteriaId": "14A68621-6216-4CD7-916C-E31D783F0DE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_firmware:8.36:*:*:*:*:*:*:*",
"matchCriteriaId": "863A7BC5-C0F5-4528-8A21-D04D9D31AE97",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ib:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8DF78494-4464-409E-85CC-2DEEBDC5D2E6",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_plus_firmware:9.10:*:*:*:*:*:*:*",
"matchCriteriaId": "31FE32D8-4D63-49B5-92D2-FE41D4DEDD7C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_plus_firmware:9.13:*:*:*:*:*:*:*",
"matchCriteriaId": "A5456471-AE98-438A-890F-7FB5C8A09405",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_plus_firmware:9.16:*:*:*:*:*:*:*",
"matchCriteriaId": "9170D349-E0D7-46B4-80E8-83506A0F5D78",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_plus_firmware:9.30:*:*:*:*:*:*:*",
"matchCriteriaId": "85554BF1-D5E4-4379-91C5-356490BB49DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_plus_firmware:9.36:*:*:*:*:*:*:*",
"matchCriteriaId": "D421824D-3F11-443C-8E5D-4B294A732B97",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mate_plus_firmware:9.40:*:*:*:*:*:*:*",
"matchCriteriaId": "4FB317E6-15F4-4AD3-A951-0C9D23784478",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ib_mate_plus:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FFB97399-05B1-4BAE-88D9-F7C4E73A4C59",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_plus_firmware:9.10:*:*:*:*:*:*:*",
"matchCriteriaId": "B96D5343-FDE7-4065-AE1F-86C409F61E05",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_plus_firmware:9.13:*:*:*:*:*:*:*",
"matchCriteriaId": "20002FF3-03F6-4BC1-97CC-7D41A453F961",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_plus_firmware:9.16:*:*:*:*:*:*:*",
"matchCriteriaId": "D9901D6B-3D0C-4D8E-B8F7-5CA0005239AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_plus_firmware:9.30:*:*:*:*:*:*:*",
"matchCriteriaId": "D7FB9180-E37A-4722-8F09-D35891396DA6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_plus_firmware:9.36:*:*:*:*:*:*:*",
"matchCriteriaId": "FBAC639A-4554-4335-BA8E-A40D07979E5B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_compact_plus_firmware:9.40:*:*:*:*:*:*:*",
"matchCriteriaId": "2A26BA06-0920-49B7-B4D2-EB70C9DB1DDB",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ib_compact_plus:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FE1F5E5B-769F-4CE7-8BEC-8013981AE009",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mini_plus_firmware:9.10:*:*:*:*:*:*:*",
"matchCriteriaId": "A598FBB7-4A1D-45D4-BC93-2F9C48439BE7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mini_plus_firmware:9.13:*:*:*:*:*:*:*",
"matchCriteriaId": "BA331696-13AA-4588-8EB8-B9DDDE61C853",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mini_plus_firmware:9.16:*:*:*:*:*:*:*",
"matchCriteriaId": "F8AF13EC-758F-447D-8B82-2B34538B200C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mini_plus_firmware:9.30:*:*:*:*:*:*:*",
"matchCriteriaId": "FAE2E2FC-88B4-4219-9E34-F1EE0639A65D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mini_plus_firmware:9.36:*:*:*:*:*:*:*",
"matchCriteriaId": "A347C273-D19F-40A4-99B4-86D33032F257",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_mini_plus_firmware:9.40:*:*:*:*:*:*:*",
"matchCriteriaId": "98274BF3-58B0-453F-B479-654600C81085",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ib_mini_plus:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E4F1334D-51B0-42D1-8427-1E9365F3D526",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_plus_firmware:9.10:*:*:*:*:*:*:*",
"matchCriteriaId": "E518BE35-F3C5-4D88-807B-DB3444DB36F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_plus_firmware:9.13:*:*:*:*:*:*:*",
"matchCriteriaId": "1794F756-AB92-4D28-957B-46736BDA5ECB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_plus_firmware:9.16:*:*:*:*:*:*:*",
"matchCriteriaId": "F3A3DC78-2D49-499A-B5A3-4AF612D34AF9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_plus_firmware:9.30:*:*:*:*:*:*:*",
"matchCriteriaId": "E4A083CB-B642-4437-8CF2-10EF199C260D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_plus_firmware:9.36:*:*:*:*:*:*:*",
"matchCriteriaId": "82ADA892-078E-4BEC-A716-667BEEBAA813",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fanuc:r-30ib_plus_firmware:9.40:*:*:*:*:*:*:*",
"matchCriteriaId": "E7AA5F91-6F05-4BA7-872F-B8DFF7F72D94",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:fanuc:r-30ib_plus:-:*:*:*:*:*:*:*",
"matchCriteriaId": "91FB7C00-AD90-4162-9EA9-8B2572AA5BDD",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The FANUC R-30iA and R-30iB series controllers are vulnerable to an out-of-bounds write, which may allow an attacker to remotely execute arbitrary code. INIT START/restore from backup required."
},
{
"lang": "es",
"value": "Los controladores de la serie R-30iA y R-30iB de FANUC son vulnerables a una escritura fuera de l\u00edmites, que puede permitir a un atacante ejecutar c\u00f3digo arbitrario de forma remota. Es requerido INIT START/restauraci\u00f3n desde una copia de seguridad"
}
],
"id": "CVE-2021-32998",
"lastModified": "2025-04-17T19:15:50.983",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 8.8,
"confidentialityImpact": "NONE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 9.2,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.2,
"impactScore": 5.2,
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.2,
"impactScore": 5.2,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2022-01-10T14:10:17.337",
"references": [
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02"
}
],
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
],
"source": "ics-cert@hq.dhs.gov",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}