Lucene search

[email protected]NVD:CVE-2013-2785

HistoryJul 31, 2013 - 1:20 p.m.

CVE-2013-2785

2013-07-3113:20:28

CWE-119

[email protected]

web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.6%

JSON

Multiple buffer overflows in CimWebServer.exe in the WebView component in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY before 8.0 SIM 27, 8.1 before SIM 25, and 8.2 before SIM 19, and Proficy Process Systems with CIMPLICITY, allow remote attackers to execute arbitrary code via crafted data in packets to TCP port 10212, aka ZDI-CAN-1621 and ZDI-CAN-1624.

Affected configurations

NVD

Node

geintelligent_platforms_proficy_hmi\/scada_cimplicityMatch8.0

geintelligent_platforms_proficy_hmi\/scada_cimplicityMatch8.1

geintelligent_platforms_proficy_hmi\/scada_cimplicityMatch8.2

geintelligent_platforms_proficy_process_systems_with_cimplicityMatch-

References

ics-cert.us-cert.gov/advisories/ICSA-13-170-01

support.ge-ip.com/support/index?page=kbchannel&id=KB15602

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.6%

JSON

Related for NVD:CVE-2013-2785

cve1 zdi2 cvelist1 prion1 ics1