Vulnerabilities > CVE-2018-7803 - Improper Check for Unusual or Exceptional Conditions vulnerability in Schneider-Electric Triconex Tristation Emulator 1.2.0

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

schneider-electric

CWE-754

NVD

Published: 2019-05-22

Updated: 2020-08-24

Summary

A CWE-754 Improper Check for Unusual or Exceptional Conditions vulnerability exists in Triconex TriStation Emulator V1.2.0, which could cause the emulator to crash when sending a specially crafted packet. The emulator is used infrequently for application logic testing. It is susceptible to an attack only while running in off-line mode. This vulnerability does not exist in Triconex hardware products and therefore has no effect on the operating safety functions in a plant.

Vulnerable Configurations

Part	Description	Count
Application	Schneider-Electric Schneider Electric Triconex Tristation Emulator 1.2.0	1

Common Weakness Enumeration (CWE)

CWE-754 - Improper Check for Unusual or Exceptional Conditions

References

https://www.schneider-electric.com/ww/en/download/document/SEVD-2019-071-03