CVE-2013-2818

Medium CVSS 4.7

Overview

The DNP Master Driver in Alstom e-terracontrol 3.5, 3.6, and 3.7 allows physically proximate attackers to cause a denial of service (infinite loop and DNP3 service disruption) via crafted input over a serial line.

CWE: CWE-20 Published: 2013-12-01T15:55:04.347

Risk analysis

This vulnerability is rated 🟡 MEDIUM.

CVSS: 4.7 (MEDIUM)
Detected tags: none (tag impact: LOW)

Recommended actions:

Prioritize remediation based on business criticality and exposure.
Limit exposure and increase monitoring until fixed.

Overview

Recommended tools

Tags