Lucene search
IcscertCVE-2013-2818HistoryDec 01, 2013 - 3:55 p.m.
CVE-2013-2818
2013-12-0115:55:04
CWE-20
icscert
web.nvd.nist.gov
22
cve-2013-2818
dnp master driver
alstom e-terracontrol
denial of service
serial line
nvd
CVSS2
4.7
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
AI Score
6.6
Confidence
High
EPSS
0.001
Percentile
22.5%
The DNP Master Driver in Alstom e-terracontrol 3.5, 3.6, and 3.7 allows physically proximate attackers to cause a denial of service (infinite loop and DNP3 service disruption) via crafted input over a serial line.
Affected configurations
Node
alstome-terracontrolMatch3.5
ORalstome-terracontrolMatch3.6
ORalstome-terracontrolMatch3.7
| Vendor | Product | Version | CPE |
|---|---|---|---|
| alstom | e-terracontrol | 3.5 | cpe:2.3:a:alstom:e-terracontrol:3.5:*:*:*:*:*:*:* |
| alstom | e-terracontrol | 3.6 | cpe:2.3:a:alstom:e-terracontrol:3.6:*:*:*:*:*:*:* |
| alstom | e-terracontrol | 3.7 | cpe:2.3:a:alstom:e-terracontrol:3.7:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2013-12-01 15:55:00
nvd
nvd
CVE-2013-2818
2013-12-01 15:55:04
cvelist
cvelist
CVE-2013-2818
2013-12-01 15:00:00
ics
ics
Alstom e-Terracontrol DNP3 Master Improper Input Validation (Update A)
2013-12-17 12:00:00
CVSS2
4.7
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
AI Score
6.6
Confidence
High
EPSS
0.001
Percentile
22.5%
Related for CVE-2013-2818