← back
CVE-2021-32996

CVE-2021-32996

CVSS 7.5 HIGHEPSS 1.1%CWE-192CWE-681
In short

FANUC industrial controllers can crash due to a flaw in how they handle certain data types, requiring a restart. This can interrupt production and affect manufacturing operations.

Technical detail

Integer coercion vulnerability in FANUC R-30iA/R-30iB controllers allows remote or local attackers to cause denial of service via malformed input that triggers improper type conversion, resulting in system crash requiring manual restart (CVE-2021-32996, CVSS 7.5).

Summary generated and translated by AI from the official description.
The FANUC R-30iA and R-30iB series controllers are vulnerable to integer coercion errors, which cause the device to crash. A restart is required.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected products
FANUC · R-30iA, R-30iA MateFANUC · R-30iB Plus, R-30iB Mate Plus, R-30iB Compact Plus, R-30iB Mini PlusFANUC · R-30iB, R-30iB Mate, R-30iB Compact

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.cisa.gov/uscert/ics/advisories/icsa-21-243-02