Lucene search
IcscertCVE-2012-4714HistoryApr 18, 2013 - 2:25 a.m.
CVE-2012-4714
2013-04-1802:25:36
CWE-189
icscert
web.nvd.nist.gov
29
cve-2012-4714
integer overflow
rnadiagnostics.dll
rockwell automation
factorytalk services platform
ftsp
cpr9-sr1
cpr9-sr2
cpr9-sr3
cpr9-sr4
cpr9-sr5
cpr9-sr5.1
cpr9-sr6
denial of service
nvd
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
7.1
Confidence
High
EPSS
0.001
Percentile
36.1%
Integer overflow in RNADiagnostics.dll in Rockwell Automation FactoryTalk Services Platform (FTSP) CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 allows remote attackers to cause a denial of service (service outage or RNADiagReceiver.exe daemon crash) via UDP data that specifies a large integer value.
Affected configurations
Node
rockwellautomationfactorytalk_services_platformMatchcpr9
ORrockwellautomationfactorytalk_services_platformMatchcpr9sr1
ORrockwellautomationfactorytalk_services_platformMatchcpr9sr2
ORrockwellautomationfactorytalk_services_platformMatchcpr9sr3
ORrockwellautomationfactorytalk_services_platformMatchcpr9sr4
ORrockwellautomationfactorytalk_services_platformMatchcpr9sr5
ORrockwellautomationfactorytalk_services_platformMatchcpr9sr5.1
ORrockwellautomationfactorytalk_services_platformMatchcpr9sr6
| Vendor | Product | Version | CPE |
|---|---|---|---|
| rockwellautomation | factorytalk_services_platform | cpr9 | cpe:2.3:a:rockwellautomation:factorytalk_services_platform:cpr9:*:*:*:*:*:*:* |
| rockwellautomation | factorytalk_services_platform | cpr9 | cpe:2.3:a:rockwellautomation:factorytalk_services_platform:cpr9:sr1:*:*:*:*:*:* |
| rockwellautomation | factorytalk_services_platform | cpr9 | cpe:2.3:a:rockwellautomation:factorytalk_services_platform:cpr9:sr2:*:*:*:*:*:* |
| rockwellautomation | factorytalk_services_platform | cpr9 | cpe:2.3:a:rockwellautomation:factorytalk_services_platform:cpr9:sr3:*:*:*:*:*:* |
| rockwellautomation | factorytalk_services_platform | cpr9 | cpe:2.3:a:rockwellautomation:factorytalk_services_platform:cpr9:sr4:*:*:*:*:*:* |
| rockwellautomation | factorytalk_services_platform | cpr9 | cpe:2.3:a:rockwellautomation:factorytalk_services_platform:cpr9:sr5:*:*:*:*:*:* |
| rockwellautomation | factorytalk_services_platform | cpr9 | cpe:2.3:a:rockwellautomation:factorytalk_services_platform:cpr9:sr5.1:*:*:*:*:*:* |
| rockwellautomation | factorytalk_services_platform | cpr9 | cpe:2.3:a:rockwellautomation:factorytalk_services_platform:cpr9:sr6:*:*:*:*:*:* |
Related
prion
prion
Integer overflow
2013-04-18 02:25:00
nessus
nessus
Rockwellautomation Factorytalk Unspecified Vulnerability
2019-11-08 00:00:00
Rockwell (CVE-2012-4714) (deprecated)
2022-02-07 00:00:00
cvelist
cvelist
CVE-2012-4714
2013-04-18 01:00:00
nvd
nvd
CVE-2012-4714
2013-04-18 02:25:36
ics
ics
Rockwell Automation FactoryTalk and RSLinx Vulnerabilities (Update A)
2018-09-05 12:00:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
7.1
Confidence
High
EPSS
0.001
Percentile
36.1%
Related for CVE-2012-4714