Lucene search

[email protected]NVD:CVE-2013-5741

HistoryOct 29, 2013 - 3:42 a.m.

CVE-2013-5741

2013-10-2903:42:33

CWE-20

[email protected]

web.nvd.nist.gov

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.4%

JSON

Triangle Research International (aka Tri) Nano-10 PLC devices with firmware r81 and earlier do not properly handle large length values in MODBUS data, which allows remote attackers to cause a denial of service (transition to the interrupt state) via a crafted packet to TCP port 502.

Affected configurations

NVD

Node

triplcnano-10_plc_firmwareRange≤r81

triplcnano-10_plc_firmwareMatchr80

AND

triplcnano-10_plcMatch-

References

blogs.ixiacom.com/ixia-blog/hack-scada-zero-day-vulnerability-discovery-on-the-nano-10-plc/

osvdb.org/ref/97/tri-nano10.txt

www.osvdb.org/97728

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.4%

JSON

Related for NVD:CVE-2013-5741

cve1 prion1 ics1 cvelist1