CVE-2021-32998

Summary

The FANUC R-30iA and R-30iB series controllers are vulnerable to an out-of-bounds write, which may allow an attacker to remotely execute arbitrary code. INIT START/restore from backup required.

Affected Software

VendorProductVersion RangeStatus
FANUCR-30iA, R-30iA Matev7 <= v7.70affected
FANUCR-30iB, R-30iB Mate, R-30iB Compactv8 <= v8.36affected
FANUCR-30iB Plus, R-30iB Mate Plus, R-30iB Compact Plus, R-30iB Mini PlusV9 <= v9.40affected

Weaknesses

  • CWE-787: CWE-787 Out-of-bounds Write

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References