Lucene search

[email protected]CVE-2013-2781

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2013-2781

2022-10-0316:15:01

CWE-399

[email protected]

web.nvd.nist.gov

vulnerability

use-after-free

3s codesys gateway

denial of service

remote attackers

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.3%

JSON

Use-after-free vulnerability in the server application in 3S CODESYS Gateway 2.3.9.27 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via unspecified vectors.

Affected configurations

NVD

Node

3s-softwarecodesys_gateway-serverMatch2.3.9.27

CPENameOperatorVersion
3s-software:codesys_gateway-server3s-software codesys gateway-servereq2.3.9.27

CPE	Name	Operator	Version
3s-software:codesys_gateway-server	3s-software codesys gateway-server	eq	2.3.9.27

References

ics-cert.us-cert.gov/advisories/ICSA-13-142-01

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.3%

JSON

Related for CVE-2013-2781

nvd1 prion1 ics1 cvelist1