CVE-2013-6142
Published Jan 15, 2014
Last updated 6 years ago
Overview
- Description
- DNP3Driver.exe in the DNP3 driver in Schneider Electric ClearSCADA 2010 R2 through 2010 R3.1 and SCADA Expert ClearSCADA 2013 R1 through 2013 R1.2 allows remote attackers to cause a denial of service (resource consumption) via IP packets containing errors that trigger event-journal messages.
- Source
- ics-cert@hq.dhs.gov
- NVD status
- Analyzed
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:N/A:P
Weaknesses
- nvd@nist.gov
- CWE-399
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:aveva:clearscada:2010:r2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0A01B1BA-9515-40F7-A3CF-83D387868470"
},
{
"criteria": "cpe:2.3:a:aveva:clearscada:2010:r2.1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EAC05F7C-4F5B-4045-ACFD-1239AEAED3C8"
},
{
"criteria": "cpe:2.3:a:aveva:clearscada:2010:r3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AAD213FA-E444-4DDB-B593-CC79C45D92F2"
},
{
"criteria": "cpe:2.3:a:aveva:clearscada:2010:r3.1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E4FBC203-019A-4DE0-97ED-F0A4872B4E55"
},
{
"criteria": "cpe:2.3:a:aveva:clearscada:2013:r1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0733DE5C-D168-4A2B-996F-E2BE671FB4C5"
},
{
"criteria": "cpe:2.3:a:aveva:clearscada:2013:r1.1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9A22FFBF-1EAF-478B-A8F4-5EDBDCAE8F41"
},
{
"criteria": "cpe:2.3:a:aveva:clearscada:2013:r1.1a:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "64BF21B8-F98E-46C5-A1AC-FE7DBD45D80F"
},
{
"criteria": "cpe:2.3:a:aveva:clearscada:2013:r1.2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A2115F6A-1689-4121-99FA-5821C78BA394"
}
],
"operator": "OR"
}
]
}
]