CVE-2013-2801
Published Aug 22, 2013
Last updated 11 years ago
Overview
- Description
- The OSIsoft PI Interface for IEEE C37.118 before 1.0.6.158 allows remote attackers to cause a denial of service (instance shutdown and data-collection outage) via crafted C37.118 configuration packets that trigger an invalid read operation.
- Source
- ics-cert@hq.dhs.gov
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:P
Weaknesses
- nvd@nist.gov
- CWE-119
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:osisoft:pi_interface:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "09E5D284-46D8-401C-93C2-91428B05FD04",
"versionEndIncluding": "1.0.5.101"
},
{
"criteria": "cpe:2.3:a:osisoft:pi_interface:1.0.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F7A33E60-6935-484D-BD83-CCBB7FC510DF"
},
{
"criteria": "cpe:2.3:a:osisoft:pi_interface:1.0.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FE44C72F-F33E-47D5-B18A-B100D043A472"
},
{
"criteria": "cpe:2.3:a:osisoft:pi_interface:1.0.3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F66C2DC2-E363-415F-9953-016B9520F22D"
},
{
"criteria": "cpe:2.3:a:osisoft:pi_interface:1.0.4.88:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D23358A8-E0D1-42A9-9516-CC80B48F1D1E"
}
],
"operator": "OR"
}
]
}
]