Lucene search

[email protected]NVD:CVE-2013-0689

HistoryOct 03, 2013 - 11:04 a.m.

CVE-2013-0689

2013-10-0311:04:37

CWE-94

[email protected]

web.nvd.nist.gov

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

75.2%

JSON

The TFTP server on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier allows remote attackers to upload files and consequently execute arbitrary code via unspecified vectors.

Affected configurations

NVD

Node

eneaoseRange≤1.20

AND

emersonroc_800l_remote_terminal_unitMatch-

Node

eneaoseRange≤3.50

AND

emersonroc_800_remote_terminal_unitMatch-

Node

eneaoseRange≤2.30

AND

emersondl_8000_remote_terminal_unitMatch-

References

ics-cert.us-cert.gov/advisories/ICSA-13-259-01

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

75.2%

JSON

Related for NVD:CVE-2013-0689

nessus2 prion1 cvelist1 cve1 ics2