Lucene search
HistoryDec 11, 2014 - 3:59 p.m.
CVE-2014-9192
cve-2014-9192
integer overflow
trihedral engineering
vtscada
vts
denial of service
server crash
remote attack
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
7 High
AI Score
Confidence
High
0.29 Low
EPSS
Percentile
96.9%
Integer overflow in Trihedral Engineering VTScada (formerly VTS) 6.5 through 9.x before 9.1.20, 10.x before 10.2.22, and 11.x before 11.1.07 allows remote attackers to cause a denial of service (server crash) via a crafted request, which triggers a large memory allocation.
Affected configurations
Node
trihedralvtscadaRange6.5–9.1.20
ORtrihedralvtscadaRange10.0–10.2.22
ORtrihedralvtscadaRange11.0–11.1.07
Related
ics
ics
Trihedral Engineering Limited VTScada Integer Overflow Vulnerability
2018-08-23 12:00:00
checkpoint_advisories
checkpoint_advisories
Trihedral VTScada Web Interface Integer Overflow (CVE-2014-9192)
2015-02-02 00:00:00
prion
prion
Integer overflow
2014-12-11 15:59:00
zdi
zdi
Trihedral VTScada Integer Overflow Denial of Service Vulnerability
2014-12-12 00:00:00
nvd
nvd
CVE-2014-9192
2014-12-11 15:59:04
cvelist
cvelist
CVE-2014-9192
2014-12-11 15:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
7 High
AI Score
Confidence
High
0.29 Low
EPSS
Percentile
96.9%
Related for CVE-2014-9192