CVE-2013-2782

🗓️ 28 Aug 2013 13:15:09Reported by icscertType

Schneider Electric Trio J-Series License Free Ethernet Radio with firmware 3.6.0 through 3.6.3 uses the same AES encryption key across different customers' installations, making it easier for remote attackers to defeat cryptographic protection mechanisms

Reporter	Title	Published	Views	Family All 4
NVD	CVE-2013-2782	28 Aug 201313:09	–	nvd
Prion	Information disclosure	28 Aug 201313:09	–	prion
ICS	Schneider Electric Trio J-Series Radio Encryption	22 Aug 201312:00	–	ics
Cvelist	CVE-2013-2782	28 Aug 201301:00	–	cvelist

Nvd

Node

schneider-electric tburjr900Match00002dh0

schneider-electric tburjr900Match00002eh0

schneider-electric tburjr900Match01002dh0

schneider-electric tburjr900Match01002eh0

schneider-electric tburjr900Match05002dh0

schneider-electric tburjr900Match05002eh0

schneider-electric tburjr900Match06002dh0

schneider-electric tburjr900Match06002eh0

AND

schneider-electric tburjr900_firmwareMatch3.6.0

schneider-electric tburjr900_firmwareMatch3.6.1

schneider-electric tburjr900_firmwareMatch3.6.2

schneider-electric tburjr900_firmwareMatch3.6.3

Source	Link
schneider-electric	www.schneider-electric.com/download/ww/en/file/141141292-SEVD-2013-143-01.pdf
ics-cert	www.ics-cert.us-cert.gov/advisories/ICSA-13-234-01

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

28 Aug 2013 13:09Current

6.9Medium risk

Vulners AI Score6.9

CVSS29.3

EPSS0.00181

CWE-310