CVE-2012-4703

Published Mar 11, 2013

Last updated 3 months ago

CVSS info 6.1

Overview

Description: The Emerson DeltaV SE3006 through 11.3.1, DeltaV VE3005 through 10.3.1 and 11.x through 11.3.1, and DeltaV VE3006 through 10.3.1 and 11.x through 11.3.1 allow remote attackers to cause a denial of service (device restart) via a crafted packet on (1) TCP port 23, (2) UDP port 161, or (3) TCP port 513.
Source: ics-cert@hq.dhs.gov
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.1
Impact score: 6.9
Exploitability score: 6.5
Vector string: AV:A/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-399

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:emerson:deltav_se3006_sd_plus_controller:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E06BB514-8F04-4511-A47F-47B58D059ABB",
            "versionEndIncluding": "11.3.1"
          },
          {
            "criteria": "cpe:2.3:a:emerson:deltav_ve3005_controller_md:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B7109D05-0252-429A-8A4A-9E25C8E4099B",
            "versionEndIncluding": "10.3.1"
          },
          {
            "criteria": "cpe:2.3:a:emerson:deltav_ve3005_controller_md:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5177AB6A-767C-438B-BCF2-4FC084BB95A8",
            "versionEndIncluding": "11.3.1"
          },
          {
            "criteria": "cpe:2.3:a:emerson:deltav_ve3006_controller_md_plus:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8FE5EF9F-83F7-46C1-A31B-7B1073FA03F7",
            "versionEndIncluding": "10.3.1"
          },
          {
            "criteria": "cpe:2.3:a:emerson:deltav_ve3006_controller_md_plus:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC578FD4-367B-4510-AC85-CC8A4AED04B0",
            "versionEndIncluding": "11.3.1"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References