2013

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

aveva

CWE-399

NVD

Published: 2014-01-15

Updated: 2018-12-31

Summary

DNP3Driver.exe in the DNP3 driver in Schneider Electric ClearSCADA 2010 R2 through 2010 R3.1 and SCADA Expert ClearSCADA 2013 R1 through 2013 R1.2 allows remote attackers to cause a denial of service (resource consumption) via IP packets containing errors that trigger event-journal messages.

Vulnerable Configurations

Part	Description	Count
Application	Aveva Aveva Clearscada 2010 Aveva Clearscada 2013	8

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

http://ics-cert.us-cert.gov/advisories/ICSA-14-014-01