CVE-2021-34573— Incorrect calculation in Enbra EWM does not report backflows or no flow events

CVSS 6.2 · Medium EPSS 0.11% · P30 Updated Feb 25, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-34573

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Incorrect calculation in Enbra EWM does not report backflows or no flow events

Source: NVD (National Vulnerability Database)

Vulnerability Description

In Enbra EWM in Version 1.7.29 together with several tested wireless M-Bus Sensors the events backflow and "no flow" are not reconized or misinterpreted. This may lead to wrong values and missing events.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

数值计算不正确

Source: NVD (National Vulnerability Database)

Vulnerability Title

Enbra EWM 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Enbra Ewm是捷克Enbra公司的一个通用读数装置。使用无线电读取水表、供暖成本指标和热量表。 Enbra EWM 1.7.29 存在安全漏洞，该漏洞源于在版本1.7.29的Enbra EWM和几个经过测试的无线M-Bus传感器中，事件回流和“无流量”不会被重新识别或误解。这可能会导致错误的值和丢失事件。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
Enbra	AT-WMBUS-16-2	all	-
Enbra	ER-AM DN 15	ER-AM DN 15/SV all	-
Enbra	EWM 1.7.29	03.11.2019	-

II. Public POCs for CVE-2021-34573

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2021-34573

请登录查看更多情报信息。

https://www.fit.vutbr.cz/~polcak/CVE-2021-34573.enx_refsource_CONFIRM
https://nvd.nist.gov/vuln/detail/CVE-2021-34573

Same Patch Batch · Enbra · 2021-09-16 · 3 CVEs total

CVE-2021-34571	6.5 MEDIUM	Hard-coded Credentials in Enbra Wireless M-Bus devices
CVE-2021-34572	6.5 MEDIUM	Insufficient Verification of Data Authenticity in Enbra EWM (replay attack)

IV. Related Vulnerabilities

Same product: AT-WMBUS-16-2

CVE-2021-34571
Hard-coded Credentials in Enbra Wireless M-Bus devices

Same vendor: Enbra

Same weakness: CWE-682

V. Comments for CVE-2021-34573

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2021-34573— Incorrect calculation in Enbra EWM does not report backflows or no flow events

I. Basic Information for CVE-2021-34573

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2021-34573

III. Intelligence Information for CVE-2021-34573

Same Patch Batch · Enbra · 2021-09-16 · 3 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2021-34573

Leave a comment