Search criteria
8 vulnerabilities found for sel-3505 by selinc
VAR-201308-0168
Vulnerability from variot - Updated: 2023-12-18 12:21Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow physically proximate attackers to cause a denial of service (infinite loop) via crafted input over a serial line. Schweitzer Engineering Laboratories is a leading manufacturer in Washington State, USA, and is a leader in power system relay protection, control, monitoring, metering and SCADA. Under certain conditions, the DNP3 driver will automatically restart and resume communication, but in severe cases, the device ALARM contact will trigger an assertion and need to reload the device driver settings. The affected products are as follows: SEL-3530-R100 -V0-Z001001-D20090915 - SEL-3530- SEL-3530-R123-V0-Z002001SEL-3530-4-R107-V0-Z001001-D20100818 - SEL-3530-4-R123 -V0-Z002001-D20130117SEL-3505-R119-V0-Z001001-D20120720 - SEL-3505-R123-V0-Z002001-D20130117SEL-2241-R113-V0-Z001001-D20110721 - SEL-2241-R123-V0-Z002001-D20130117. Schweitzer Engineering Laboratories multiple devices are prone to a local denial-of-service vulnerability. An attacker can exploit this issue to crash the affected device, denying service to legitimate users. NOTE: To exploit this issue, local access to the serial-based outstation is required
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201308-0168",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "sel-3530-4",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r107-v0-z001001-d20100818"
},
{
"model": "sel-2241",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r113-v0-z001001-d20110721"
},
{
"model": "sel-3530",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r100_-v0-z001001-d20090915"
},
{
"model": "sel-3530",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r123-v0-z002001"
},
{
"model": "sel-3505",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r123-v0-z002001-d20130117"
},
{
"model": "sel-3530-4",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r123-v0-z002001-d20130117"
},
{
"model": "sel-3505",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r119-v0-z001001-d20120720"
},
{
"model": "sel-2241",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r123-v0-z002001-d20130117"
},
{
"model": "sel-2241",
"scope": "eq",
"trust": 0.8,
"vendor": "schweitzer engineering laboratories",
"version": "r113-v0-z001001-d20110721 to sel-2241-r123-v0-z002001-d20130117"
},
{
"model": "sel-3505",
"scope": "eq",
"trust": 0.8,
"vendor": "schweitzer engineering laboratories",
"version": "r119-v0-z001001-d20120720 to sel-3505-r123-v0-z002001-d20130117"
},
{
"model": "sel-3530",
"scope": "eq",
"trust": 0.8,
"vendor": "schweitzer engineering laboratories",
"version": "r100 -v0-z001001-d20090915 to sel-3530- sel-3530-r123-v0-z002001"
},
{
"model": "sel-3530-4",
"scope": "eq",
"trust": 0.8,
"vendor": "schweitzer engineering laboratories",
"version": "r107-v0-z001001-d20100818 to sel-3530-4-r123-v0-z002001-d20130117"
},
{
"model": "engineering laboratories sel-3530 rtac",
"scope": null,
"trust": 0.6,
"vendor": "schweitzer",
"version": null
},
{
"model": "engineering laboratories sel-3505 rtac",
"scope": null,
"trust": 0.6,
"vendor": "schweitzer",
"version": null
},
{
"model": "engineering laboratories sel-2241 rtac",
"scope": null,
"trust": 0.6,
"vendor": "schweitzer",
"version": null
},
{
"model": "sel-3530-se-3530-r123-v0-z002001",
"scope": "eq",
"trust": 0.3,
"vendor": "schweitzer engineering laboratories",
"version": "0"
},
{
"model": "sel-3530-r100 -v0-z001001-d20090915",
"scope": "eq",
"trust": 0.3,
"vendor": "schweitzer engineering laboratories",
"version": "0"
},
{
"model": "sel-3530-4-r123-v0-z002001-d20130117",
"scope": "eq",
"trust": 0.3,
"vendor": "schweitzer engineering laboratories",
"version": "0"
},
{
"model": "sel-3530-4-r107-v0-z001001-d20100818",
"scope": "eq",
"trust": 0.3,
"vendor": "schweitzer engineering laboratories",
"version": "0"
},
{
"model": "sel-3505-r123-v0-z002001-d20130117",
"scope": "eq",
"trust": 0.3,
"vendor": "schweitzer engineering laboratories",
"version": "0"
},
{
"model": "sel-3505-r119-v0-z001001-d20120720",
"scope": "eq",
"trust": 0.3,
"vendor": "schweitzer engineering laboratories",
"version": "0"
},
{
"model": "sel-2241-r123-v0-z002001-d20130117",
"scope": "eq",
"trust": 0.3,
"vendor": "schweitzer engineering laboratories",
"version": "0"
},
{
"model": "sel-2241-r113-v0-z001001-d20110721",
"scope": "eq",
"trust": 0.3,
"vendor": "schweitzer engineering laboratories",
"version": "0"
},
{
"model": "r113-v0-z001001-d20110721",
"scope": null,
"trust": 0.2,
"vendor": "sel 2241",
"version": null
},
{
"model": "r123-v0-z002001-d20130117",
"scope": null,
"trust": 0.2,
"vendor": "sel 2241",
"version": null
},
{
"model": "r119-v0-z001001-d20120720",
"scope": null,
"trust": 0.2,
"vendor": "sel 3505",
"version": null
},
{
"model": "r123-v0-z002001-d20130117",
"scope": null,
"trust": 0.2,
"vendor": "sel 3505",
"version": null
},
{
"model": "r100 -v0-z001001-d20090915",
"scope": null,
"trust": 0.2,
"vendor": "sel 3530",
"version": null
},
{
"model": "r123-v0-z002001",
"scope": null,
"trust": 0.2,
"vendor": "sel 3530",
"version": null
},
{
"model": "r107-v0-z001001-d20100818",
"scope": null,
"trust": 0.2,
"vendor": "sel 3530 4",
"version": null
},
{
"model": "r123-v0-z002001-d20130117",
"scope": null,
"trust": 0.2,
"vendor": "sel 3530 4",
"version": null
}
],
"sources": [
{
"db": "IVD",
"id": "c94d5dc4-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2013-12159"
},
{
"db": "BID",
"id": "61667"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003716"
},
{
"db": "NVD",
"id": "CVE-2013-2798"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-131"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-2241:r113-v0-z001001-d20110721:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-3530:r123-v0-z002001:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-3505:r119-v0-z001001-d20120720:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-3505:r123-v0-z002001-d20130117:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-3530-4:r107-v0-z001001-d20100818:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-3530-4:r123-v0-z002001-d20130117:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-3530:r100_-v0-z001001-d20090915:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-2241:r123-v0-z002001-d20130117:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2013-2798"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Adam Crain of Automatak and Chris Sistrunk",
"sources": [
{
"db": "BID",
"id": "61667"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-131"
}
],
"trust": 0.9
},
"cve": "CVE-2013-2798",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "COMPLETE",
"baseScore": 4.7,
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.4,
"impactScore": 6.9,
"integrityImpact": "NONE",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Medium",
"accessVector": "Local",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Complete",
"baseScore": 4.7,
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "CVE-2013-2798",
"impactScore": null,
"integrityImpact": "None",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "Medium",
"trust": 0.8,
"userInteractionRequired": null,
"vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "COMPLETE",
"baseScore": 4.7,
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.4,
"id": "CNVD-2013-12159",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "COMPLETE",
"baseScore": 4.7,
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.4,
"id": "c94d5dc4-2352-11e6-abef-000c29c66e3d",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.2,
"vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.9 [IVD]"
}
],
"cvssV3": [],
"severity": [
{
"author": "NVD",
"id": "CVE-2013-2798",
"trust": 1.8,
"value": "MEDIUM"
},
{
"author": "CNVD",
"id": "CNVD-2013-12159",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201308-131",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "IVD",
"id": "c94d5dc4-2352-11e6-abef-000c29c66e3d",
"trust": 0.2,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "c94d5dc4-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2013-12159"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003716"
},
{
"db": "NVD",
"id": "CVE-2013-2798"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-131"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow physically proximate attackers to cause a denial of service (infinite loop) via crafted input over a serial line. Schweitzer Engineering Laboratories is a leading manufacturer in Washington State, USA, and is a leader in power system relay protection, control, monitoring, metering and SCADA. Under certain conditions, the DNP3 driver will automatically restart and resume communication, but in severe cases, the device ALARM contact will trigger an assertion and need to reload the device driver settings. The affected products are as follows: SEL-3530-R100 -V0-Z001001-D20090915 - SEL-3530- SEL-3530-R123-V0-Z002001SEL-3530-4-R107-V0-Z001001-D20100818 - SEL-3530-4-R123 -V0-Z002001-D20130117SEL-3505-R119-V0-Z001001-D20120720 - SEL-3505-R123-V0-Z002001-D20130117SEL-2241-R113-V0-Z001001-D20110721 - SEL-2241-R123-V0-Z002001-D20130117. Schweitzer Engineering Laboratories multiple devices are prone to a local denial-of-service vulnerability. \nAn attacker can exploit this issue to crash the affected device, denying service to legitimate users. \nNOTE: To exploit this issue, local access to the serial-based outstation is required",
"sources": [
{
"db": "NVD",
"id": "CVE-2013-2798"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003716"
},
{
"db": "CNVD",
"id": "CNVD-2013-12159"
},
{
"db": "BID",
"id": "61667"
},
{
"db": "IVD",
"id": "c94d5dc4-2352-11e6-abef-000c29c66e3d"
}
],
"trust": 2.61
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2013-2798",
"trust": 3.5
},
{
"db": "ICS CERT",
"id": "ICSA-13-219-01",
"trust": 3.3
},
{
"db": "BID",
"id": "61667",
"trust": 1.5
},
{
"db": "CNVD",
"id": "CNVD-2013-12159",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201308-131",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003716",
"trust": 0.8
},
{
"db": "IVD",
"id": "C94D5DC4-2352-11E6-ABEF-000C29C66E3D",
"trust": 0.2
}
],
"sources": [
{
"db": "IVD",
"id": "c94d5dc4-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2013-12159"
},
{
"db": "BID",
"id": "61667"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003716"
},
{
"db": "NVD",
"id": "CVE-2013-2798"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-131"
}
]
},
"id": "VAR-201308-0168",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "c94d5dc4-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2013-12159"
}
],
"trust": 1.8
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS",
"Network device"
],
"sub_category": null,
"trust": 0.6
},
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.2
}
],
"sources": [
{
"db": "IVD",
"id": "c94d5dc4-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2013-12159"
}
]
},
"last_update_date": "2023-12-18T12:21:39.815000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "https://www.selinc.com/default.aspx"
},
{
"title": "SEL-2241 RTAC",
"trust": 0.8,
"url": "https://www.selinc.com/workarea/downloadasset.aspx?id=97914"
},
{
"title": "SEL-3505 Automation Controller",
"trust": 0.8,
"url": "https://www.selinc.com/sel-3505/"
},
{
"title": "Real-Time Automation Controller (RTAC)",
"trust": 0.8,
"url": "https://www.selinc.com/sel-3530/"
},
{
"title": "Patch for multiple device local denial of service vulnerabilities in Schweitzer Engineering Laboratories",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/38162"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2013-12159"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003716"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-20",
"trust": 1.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2013-003716"
},
{
"db": "NVD",
"id": "CVE-2013-2798"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.3,
"url": "http://ics-cert.us-cert.gov/advisories/icsa-13-219-01"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2798"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-2798"
},
{
"trust": 0.6,
"url": "http://www.securityfocus.com/bid/61667"
},
{
"trust": 0.3,
"url": "https://www.selinc.com/sel-3530/"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2013-12159"
},
{
"db": "BID",
"id": "61667"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003716"
},
{
"db": "NVD",
"id": "CVE-2013-2798"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-131"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "c94d5dc4-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2013-12159"
},
{
"db": "BID",
"id": "61667"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003716"
},
{
"db": "NVD",
"id": "CVE-2013-2798"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-131"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2013-08-13T00:00:00",
"db": "IVD",
"id": "c94d5dc4-2352-11e6-abef-000c29c66e3d"
},
{
"date": "2013-08-13T00:00:00",
"db": "CNVD",
"id": "CNVD-2013-12159"
},
{
"date": "2013-08-07T00:00:00",
"db": "BID",
"id": "61667"
},
{
"date": "2013-08-13T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2013-003716"
},
{
"date": "2013-08-09T23:55:02.560000",
"db": "NVD",
"id": "CVE-2013-2798"
},
{
"date": "2013-08-22T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201308-131"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2013-08-13T00:00:00",
"db": "CNVD",
"id": "CNVD-2013-12159"
},
{
"date": "2013-08-07T00:00:00",
"db": "BID",
"id": "61667"
},
{
"date": "2013-08-13T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2013-003716"
},
{
"date": "2013-08-12T20:23:44.803000",
"db": "NVD",
"id": "CVE-2013-2798"
},
{
"date": "2013-08-22T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201308-131"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "local",
"sources": [
{
"db": "BID",
"id": "61667"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-131"
}
],
"trust": 0.9
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Schweitzer Engineering Laboratories Multiple Device Local Denial of Service Vulnerabilities",
"sources": [
{
"db": "CNVD",
"id": "CNVD-2013-12159"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-131"
}
],
"trust": 1.2
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Input validation",
"sources": [
{
"db": "IVD",
"id": "c94d5dc4-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-131"
}
],
"trust": 0.8
}
}
VAR-201308-0166
Vulnerability from variot - Updated: 2023-12-18 12:21Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet. Schweitzer Engineering Laboratories is a leading manufacturer in Washington State, USA, and is a leader in power system relay protection, control, monitoring, metering and SCADA. Under certain conditions, the DNP3 driver will automatically restart and resume communication, but in severe cases, the device ALARM contact will trigger an assertion and need to reload the device driver settings. The affected products are as follows: SEL-3530-R100 -V0-Z001001-D20090915 - SEL-3530- SEL-3530-R123-V0-Z002001SEL-3530-4-R107-V0-Z001001-D20100818 - SEL-3530-4-R123 -V0-Z002001-D20130117SEL-3505-R119-V0-Z001001-D20120720 - SEL-3505-R123-V0-Z002001-D20130117SEL-2241-R113-V0-Z001001-D20110721 - SEL-2241-R123-V0-Z002001-D20130117. Multiple Schweitzer Engineering Laboratories devices are prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to crash the affected device, denying service to legitimate users. Note: This issue affects the IP connected devices
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201308-0166",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "sel-3530-4",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r107-v0-z001001-d20100818"
},
{
"model": "sel-2241",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r113-v0-z001001-d20110721"
},
{
"model": "sel-3530",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r100_-v0-z001001-d20090915"
},
{
"model": "sel-3530",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r123-v0-z002001"
},
{
"model": "sel-3505",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r123-v0-z002001-d20130117"
},
{
"model": "sel-3530-4",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r123-v0-z002001-d20130117"
},
{
"model": "sel-3505",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r119-v0-z001001-d20120720"
},
{
"model": "sel-2241",
"scope": "eq",
"trust": 1.6,
"vendor": "selinc",
"version": "r123-v0-z002001-d20130117"
},
{
"model": "sel-2241",
"scope": "eq",
"trust": 0.8,
"vendor": "schweitzer engineering laboratories",
"version": "r113-v0-z001001-d20110721 to sel-2241-r123-v0-z002001-d20130117"
},
{
"model": "sel-3505",
"scope": "eq",
"trust": 0.8,
"vendor": "schweitzer engineering laboratories",
"version": "r119-v0-z001001-d20120720 to sel-3505-r123-v0-z002001-d20130117"
},
{
"model": "sel-3530",
"scope": "eq",
"trust": 0.8,
"vendor": "schweitzer engineering laboratories",
"version": "r100 -v0-z001001-d20090915 to sel-3530- sel-3530-r123-v0-z002001"
},
{
"model": "sel-3530-4",
"scope": "eq",
"trust": 0.8,
"vendor": "schweitzer engineering laboratories",
"version": "r107-v0-z001001-d20100818 to sel-3530-4-r123-v0-z002001-d20130117"
},
{
"model": "engineering laboratories sel-3530 rtac",
"scope": null,
"trust": 0.6,
"vendor": "schweitzer",
"version": null
},
{
"model": "engineering laboratories sel-3505 rtac",
"scope": null,
"trust": 0.6,
"vendor": "schweitzer",
"version": null
},
{
"model": "engineering laboratories sel-2241 rtac",
"scope": null,
"trust": 0.6,
"vendor": "schweitzer",
"version": null
},
{
"model": "r113-v0-z001001-d20110721",
"scope": null,
"trust": 0.2,
"vendor": "sel 2241",
"version": null
},
{
"model": "r123-v0-z002001-d20130117",
"scope": null,
"trust": 0.2,
"vendor": "sel 2241",
"version": null
},
{
"model": "r119-v0-z001001-d20120720",
"scope": null,
"trust": 0.2,
"vendor": "sel 3505",
"version": null
},
{
"model": "r123-v0-z002001-d20130117",
"scope": null,
"trust": 0.2,
"vendor": "sel 3505",
"version": null
},
{
"model": "r100 -v0-z001001-d20090915",
"scope": null,
"trust": 0.2,
"vendor": "sel 3530",
"version": null
},
{
"model": "r123-v0-z002001",
"scope": null,
"trust": 0.2,
"vendor": "sel 3530",
"version": null
},
{
"model": "r107-v0-z001001-d20100818",
"scope": null,
"trust": 0.2,
"vendor": "sel 3530 4",
"version": null
},
{
"model": "r123-v0-z002001-d20130117",
"scope": null,
"trust": 0.2,
"vendor": "sel 3530 4",
"version": null
}
],
"sources": [
{
"db": "IVD",
"id": "c9668f1a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2013-12158"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003714"
},
{
"db": "NVD",
"id": "CVE-2013-2792"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-130"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-2241:r113-v0-z001001-d20110721:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-3530:r123-v0-z002001:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-3505:r119-v0-z001001-d20120720:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-3505:r123-v0-z002001-d20130117:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-3530-4:r107-v0-z001001-d20100818:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-3530-4:r123-v0-z002001-d20130117:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-2241:r123-v0-z002001-d20130117:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:selinc:sel-3530:r100_-v0-z001001-d20090915:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2013-2792"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Adam Crain of Automatak and Chris Sistrunk",
"sources": [
{
"db": "BID",
"id": "61665"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-130"
}
],
"trust": 0.9
},
"cve": "CVE-2013-2792",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "COMPLETE",
"baseScore": 7.1,
"confidentialityImpact": "NONE",
"exploitabilityScore": 8.6,
"impactScore": 6.9,
"integrityImpact": "NONE",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Medium",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Complete",
"baseScore": 7.1,
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "CVE-2013-2792",
"impactScore": null,
"integrityImpact": "None",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "High",
"trust": 0.8,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "COMPLETE",
"baseScore": 7.1,
"confidentialityImpact": "NONE",
"exploitabilityScore": 8.6,
"id": "CNVD-2013-12158",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "COMPLETE",
"baseScore": 7.1,
"confidentialityImpact": "NONE",
"exploitabilityScore": 8.6,
"id": "c9668f1a-2352-11e6-abef-000c29c66e3d",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "HIGH",
"trust": 0.2,
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.9 [IVD]"
}
],
"cvssV3": [],
"severity": [
{
"author": "NVD",
"id": "CVE-2013-2792",
"trust": 1.8,
"value": "HIGH"
},
{
"author": "CNVD",
"id": "CNVD-2013-12158",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201308-130",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "IVD",
"id": "c9668f1a-2352-11e6-abef-000c29c66e3d",
"trust": 0.2,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "c9668f1a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2013-12158"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003714"
},
{
"db": "NVD",
"id": "CVE-2013-2792"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-130"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet. Schweitzer Engineering Laboratories is a leading manufacturer in Washington State, USA, and is a leader in power system relay protection, control, monitoring, metering and SCADA. Under certain conditions, the DNP3 driver will automatically restart and resume communication, but in severe cases, the device ALARM contact will trigger an assertion and need to reload the device driver settings. The affected products are as follows: SEL-3530-R100 -V0-Z001001-D20090915 - SEL-3530- SEL-3530-R123-V0-Z002001SEL-3530-4-R107-V0-Z001001-D20100818 - SEL-3530-4-R123 -V0-Z002001-D20130117SEL-3505-R119-V0-Z001001-D20120720 - SEL-3505-R123-V0-Z002001-D20130117SEL-2241-R113-V0-Z001001-D20110721 - SEL-2241-R123-V0-Z002001-D20130117. Multiple Schweitzer Engineering Laboratories devices are prone to a remote denial-of-service vulnerability. \nAn attacker can exploit this issue to crash the affected device, denying service to legitimate users. \nNote: This issue affects the IP connected devices",
"sources": [
{
"db": "NVD",
"id": "CVE-2013-2792"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003714"
},
{
"db": "CNVD",
"id": "CNVD-2013-12158"
},
{
"db": "BID",
"id": "61665"
},
{
"db": "IVD",
"id": "c9668f1a-2352-11e6-abef-000c29c66e3d"
}
],
"trust": 2.61
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2013-2792",
"trust": 3.5
},
{
"db": "ICS CERT",
"id": "ICSA-13-219-01",
"trust": 3.0
},
{
"db": "BID",
"id": "61665",
"trust": 1.5
},
{
"db": "CNVD",
"id": "CNVD-2013-12158",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201308-130",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003714",
"trust": 0.8
},
{
"db": "IVD",
"id": "C9668F1A-2352-11E6-ABEF-000C29C66E3D",
"trust": 0.2
}
],
"sources": [
{
"db": "IVD",
"id": "c9668f1a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2013-12158"
},
{
"db": "BID",
"id": "61665"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003714"
},
{
"db": "NVD",
"id": "CVE-2013-2792"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-130"
}
]
},
"id": "VAR-201308-0166",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "c9668f1a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2013-12158"
}
],
"trust": 1.8
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS",
"Network device"
],
"sub_category": null,
"trust": 0.6
},
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.2
}
],
"sources": [
{
"db": "IVD",
"id": "c9668f1a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2013-12158"
}
]
},
"last_update_date": "2023-12-18T12:21:39.849000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "https://www.selinc.com/default.aspx"
},
{
"title": "SEL-3505 Automation Controller",
"trust": 0.8,
"url": "https://www.selinc.com/sel-3505"
},
{
"title": "Real-Time Automation Controller (RTAC)",
"trust": 0.8,
"url": "https://www.selinc.com/sel-3530"
},
{
"title": "SEL-2240 Axion Distributed Control and Integration Platform",
"trust": 0.8,
"url": "https://www.selinc.com/sel-2240/"
},
{
"title": "Schweitzer Engineering Laboratories Patch for Multiple Device Remote Denial of Service Vulnerabilities",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/38161"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2013-12158"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003714"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-20",
"trust": 1.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2013-003714"
},
{
"db": "NVD",
"id": "CVE-2013-2792"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.0,
"url": "http://ics-cert.us-cert.gov/advisories/icsa-13-219-01"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2792"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-2792"
},
{
"trust": 0.6,
"url": "http://www.securityfocus.com/bid/61665"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2013-12158"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003714"
},
{
"db": "NVD",
"id": "CVE-2013-2792"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-130"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "c9668f1a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2013-12158"
},
{
"db": "BID",
"id": "61665"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-003714"
},
{
"db": "NVD",
"id": "CVE-2013-2792"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-130"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2013-08-13T00:00:00",
"db": "IVD",
"id": "c9668f1a-2352-11e6-abef-000c29c66e3d"
},
{
"date": "2013-08-13T00:00:00",
"db": "CNVD",
"id": "CNVD-2013-12158"
},
{
"date": "2013-08-07T00:00:00",
"db": "BID",
"id": "61665"
},
{
"date": "2013-08-13T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2013-003714"
},
{
"date": "2013-08-09T23:55:02.513000",
"db": "NVD",
"id": "CVE-2013-2792"
},
{
"date": "2013-08-22T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201308-130"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2013-08-13T00:00:00",
"db": "CNVD",
"id": "CNVD-2013-12158"
},
{
"date": "2013-10-21T00:18:00",
"db": "BID",
"id": "61665"
},
{
"date": "2013-08-13T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2013-003714"
},
{
"date": "2013-08-12T20:00:00.960000",
"db": "NVD",
"id": "CVE-2013-2792"
},
{
"date": "2013-08-22T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201308-130"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201308-130"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "plural Schweitzer Engineering Laboratories Service disruption in products (DoS) Vulnerabilities",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2013-003714"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Input validation",
"sources": [
{
"db": "IVD",
"id": "c9668f1a-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNNVD",
"id": "CNNVD-201308-130"
}
],
"trust": 0.8
}
}
FKIE_CVE-2013-2798
Vulnerability from fkie_nvd - Published: 2013-08-09 23:55 - Updated: 2025-04-11 00:51
Severity ?
Summary
Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow physically proximate attackers to cause a denial of service (infinite loop) via crafted input over a serial line.
References
| URL | Tags | ||
|---|---|---|---|
| ics-cert@hq.dhs.gov | http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01 | US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01 | US Government Resource |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| selinc | sel-2241 | r113-v0-z001001-d20110721 | |
| selinc | sel-2241 | r123-v0-z002001-d20130117 | |
| selinc | sel-3505 | r119-v0-z001001-d20120720 | |
| selinc | sel-3505 | r123-v0-z002001-d20130117 | |
| selinc | sel-3530 | r100_-v0-z001001-d20090915 | |
| selinc | sel-3530 | r123-v0-z002001 | |
| selinc | sel-3530-4 | r107-v0-z001001-d20100818 | |
| selinc | sel-3530-4 | r123-v0-z002001-d20130117 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:selinc:sel-2241:r113-v0-z001001-d20110721:*:*:*:*:*:*:*",
"matchCriteriaId": "FEFBD003-0930-4D9D-9DB6-2C0A4ED13215",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:selinc:sel-2241:r123-v0-z002001-d20130117:*:*:*:*:*:*:*",
"matchCriteriaId": "7738A5BC-2BF5-4277-9435-2EA08976669A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:selinc:sel-3505:r119-v0-z001001-d20120720:*:*:*:*:*:*:*",
"matchCriteriaId": "E94693B8-F193-4492-8751-C6B18000E49E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:selinc:sel-3505:r123-v0-z002001-d20130117:*:*:*:*:*:*:*",
"matchCriteriaId": "E7399CF7-917B-44F8-8340-E6A25A22DD2C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:selinc:sel-3530:r100_-v0-z001001-d20090915:*:*:*:*:*:*:*",
"matchCriteriaId": "A3608E06-B446-4615-8461-7F70A1E548A6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:selinc:sel-3530:r123-v0-z002001:*:*:*:*:*:*:*",
"matchCriteriaId": "8390E91C-A473-4C62-A185-E9360D6D5F87",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:selinc:sel-3530-4:r107-v0-z001001-d20100818:*:*:*:*:*:*:*",
"matchCriteriaId": "93107A93-52DE-4291-B2FD-5A57999E4D5C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:selinc:sel-3530-4:r123-v0-z002001-d20130117:*:*:*:*:*:*:*",
"matchCriteriaId": "9B012FDE-5F9C-49FC-AB00-FD8FE9BC699A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow physically proximate attackers to cause a denial of service (infinite loop) via crafted input over a serial line."
},
{
"lang": "es",
"value": "Los dispositivos maestro Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, y SEL-3530 RTAC permite a atacantes con acceso f\u00edsico provocar una denegaci\u00f3n de servicio (bucle infinito) a trav\u00e9s de una entrada por l\u00ednea serie manipulada."
}
],
"id": "CVE-2013-2798",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 4.7,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2013-08-09T23:55:02.560",
"references": [
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"US Government Resource"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"US Government Resource"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
}
],
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2013-2792
Vulnerability from fkie_nvd - Published: 2013-08-09 23:55 - Updated: 2025-04-11 00:51
Severity ?
Summary
Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet.
References
| URL | Tags | ||
|---|---|---|---|
| ics-cert@hq.dhs.gov | http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01 | US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01 | US Government Resource |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| selinc | sel-2241 | r113-v0-z001001-d20110721 | |
| selinc | sel-2241 | r123-v0-z002001-d20130117 | |
| selinc | sel-3505 | r119-v0-z001001-d20120720 | |
| selinc | sel-3505 | r123-v0-z002001-d20130117 | |
| selinc | sel-3530 | r100_-v0-z001001-d20090915 | |
| selinc | sel-3530 | r123-v0-z002001 | |
| selinc | sel-3530-4 | r107-v0-z001001-d20100818 | |
| selinc | sel-3530-4 | r123-v0-z002001-d20130117 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:selinc:sel-2241:r113-v0-z001001-d20110721:*:*:*:*:*:*:*",
"matchCriteriaId": "FEFBD003-0930-4D9D-9DB6-2C0A4ED13215",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:selinc:sel-2241:r123-v0-z002001-d20130117:*:*:*:*:*:*:*",
"matchCriteriaId": "7738A5BC-2BF5-4277-9435-2EA08976669A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:selinc:sel-3505:r119-v0-z001001-d20120720:*:*:*:*:*:*:*",
"matchCriteriaId": "E94693B8-F193-4492-8751-C6B18000E49E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:selinc:sel-3505:r123-v0-z002001-d20130117:*:*:*:*:*:*:*",
"matchCriteriaId": "E7399CF7-917B-44F8-8340-E6A25A22DD2C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:selinc:sel-3530:r100_-v0-z001001-d20090915:*:*:*:*:*:*:*",
"matchCriteriaId": "A3608E06-B446-4615-8461-7F70A1E548A6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:selinc:sel-3530:r123-v0-z002001:*:*:*:*:*:*:*",
"matchCriteriaId": "8390E91C-A473-4C62-A185-E9360D6D5F87",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:selinc:sel-3530-4:r107-v0-z001001-d20100818:*:*:*:*:*:*:*",
"matchCriteriaId": "93107A93-52DE-4291-B2FD-5A57999E4D5C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:selinc:sel-3530-4:r123-v0-z002001-d20130117:*:*:*:*:*:*:*",
"matchCriteriaId": "9B012FDE-5F9C-49FC-AB00-FD8FE9BC699A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet."
},
{
"lang": "es",
"value": "Los dispositivos maestro Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, y SEL-3530 RTAC permite a atacantes remotos provocar una denegaci\u00f3n de servicio (bucle infinito) a trav\u00e9s de un paquete DNP3 manipulado."
}
],
"id": "CVE-2013-2792",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.1,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2013-08-09T23:55:02.513",
"references": [
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"US Government Resource"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"US Government Resource"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
}
],
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
CVE-2013-2798 (GCVE-0-2013-2798)
Vulnerability from cvelistv5 – Published: 2013-08-09 23:00 – Updated: 2024-09-17 02:31
VLAI?
Summary
Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow physically proximate attackers to cause a denial of service (infinite loop) via crafted input over a serial line.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:52:20.050Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow physically proximate attackers to cause a denial of service (infinite loop) via crafted input over a serial line."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2013-08-09T23:00:00Z",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2013-2798",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow physically proximate attackers to cause a denial of service (infinite loop) via crafted input over a serial line."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01",
"refsource": "MISC",
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2013-2798",
"datePublished": "2013-08-09T23:00:00Z",
"dateReserved": "2013-04-11T00:00:00Z",
"dateUpdated": "2024-09-17T02:31:55.589Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-2792 (GCVE-0-2013-2792)
Vulnerability from cvelistv5 – Published: 2013-08-09 23:00 – Updated: 2024-09-17 01:41
VLAI?
Summary
Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:52:19.932Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2013-08-09T23:00:00Z",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2013-2792",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01",
"refsource": "MISC",
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2013-2792",
"datePublished": "2013-08-09T23:00:00Z",
"dateReserved": "2013-04-11T00:00:00Z",
"dateUpdated": "2024-09-17T01:41:42.944Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-2798 (GCVE-0-2013-2798)
Vulnerability from nvd – Published: 2013-08-09 23:00 – Updated: 2024-09-17 02:31
VLAI?
Summary
Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow physically proximate attackers to cause a denial of service (infinite loop) via crafted input over a serial line.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:52:20.050Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow physically proximate attackers to cause a denial of service (infinite loop) via crafted input over a serial line."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2013-08-09T23:00:00Z",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2013-2798",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow physically proximate attackers to cause a denial of service (infinite loop) via crafted input over a serial line."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01",
"refsource": "MISC",
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2013-2798",
"datePublished": "2013-08-09T23:00:00Z",
"dateReserved": "2013-04-11T00:00:00Z",
"dateUpdated": "2024-09-17T02:31:55.589Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-2792 (GCVE-0-2013-2792)
Vulnerability from nvd – Published: 2013-08-09 23:00 – Updated: 2024-09-17 01:41
VLAI?
Summary
Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:52:19.932Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2013-08-09T23:00:00Z",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2013-2792",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01",
"refsource": "MISC",
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2013-2792",
"datePublished": "2013-08-09T23:00:00Z",
"dateReserved": "2013-04-11T00:00:00Z",
"dateUpdated": "2024-09-17T01:41:42.944Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}