Lucene search

K

[email protected]NVD:CVE-2013-0653

HistoryJan 27, 2013 - 6:55 p.m.

CVE-2013-0653

2013-01-2718:55:03

CWE-22

[email protected]

web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

6.5 Medium

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

86.7%

Directory traversal vulnerability in substitute.bcl in the WebView CimWeb subsystem in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with CIMPLICITY, allows remote attackers to read arbitrary files via a crafted packet.

Affected configurations

NVD

Node

geintelligent_platforms_proficy_hmi\/scada_cimplicityMatch4.01

OR

geintelligent_platforms_proficy_hmi\/scada_cimplicityMatch7.5

OR

geintelligent_platforms_proficy_hmi\/scada_cimplicityMatch8.0

Node

geintelligent_platforms_proficy_process_systems_with_cimplicityMatch-

AND

geintelligent_platforms_proficy_process_systemsMatch-

References

www.us-cert.gov/control_systems/pdf/ICSA-13-022-02.pdf

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

6.5 Medium

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

86.7%

Related for NVD:CVE-2013-0653

checkpoint_advisories1 prion1 cvelist1 cve1 openvas1 ics1