Lucene search

[email protected]NVD:CVE-2014-9196

HistoryJul 20, 2015 - 1:59 a.m.

CVE-2014-9196

2015-07-2001:59:01

CWE-254

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0.004

Percentile

74.9%

JSON

Eaton Cooper Power Systems ProView 4.0 and 5.0 before 5.0 11 on Form 6 controls and Idea and IdeaPLUS relays generates TCP initial sequence number (ISN) values linearly, which makes it easier for remote attackers to spoof TCP sessions by predicting an ISN value.

Affected configurations

Nvd

Node

eatonproviewMatch4.0

eatonproviewMatch5.0

eatonproviewMatch5.0.1

eatonproviewMatch5.0.2

eatonproviewMatch5.0.3

eatonproviewMatch5.0.4

eatonproviewMatch5.0.5

eatonproviewMatch5.0.6

eatonproviewMatch5.0.7

eatonproviewMatch5.0.8

eatonproviewMatch5.0.9

eatonproviewMatch5.0.10

VendorProductVersionCPE
eatonproview4.0cpe:2.3:a:eaton:proview:4.0:*:*:*:*:*:*:*
eatonproview5.0cpe:2.3:a:eaton:proview:5.0:*:*:*:*:*:*:*
eatonproview5.0.1cpe:2.3:a:eaton:proview:5.0.1:*:*:*:*:*:*:*
eatonproview5.0.2cpe:2.3:a:eaton:proview:5.0.2:*:*:*:*:*:*:*
eatonproview5.0.3cpe:2.3:a:eaton:proview:5.0.3:*:*:*:*:*:*:*
eatonproview5.0.4cpe:2.3:a:eaton:proview:5.0.4:*:*:*:*:*:*:*
eatonproview5.0.5cpe:2.3:a:eaton:proview:5.0.5:*:*:*:*:*:*:*
eatonproview5.0.6cpe:2.3:a:eaton:proview:5.0.6:*:*:*:*:*:*:*
eatonproview5.0.7cpe:2.3:a:eaton:proview:5.0.7:*:*:*:*:*:*:*
eatonproview5.0.8cpe:2.3:a:eaton:proview:5.0.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
eaton	proview	4.0	cpe:2.3:a:eaton:proview:4.0:::::::*
eaton	proview	5.0	cpe:2.3:a:eaton:proview:5.0:::::::*
eaton	proview	5.0.1	cpe:2.3:a:eaton:proview:5.0.1:::::::*
eaton	proview	5.0.2	cpe:2.3:a:eaton:proview:5.0.2:::::::*
eaton	proview	5.0.3	cpe:2.3:a:eaton:proview:5.0.3:::::::*
eaton	proview	5.0.4	cpe:2.3:a:eaton:proview:5.0.4:::::::*
eaton	proview	5.0.5	cpe:2.3:a:eaton:proview:5.0.5:::::::*
eaton	proview	5.0.6	cpe:2.3:a:eaton:proview:5.0.6:::::::*
eaton	proview	5.0.7	cpe:2.3:a:eaton:proview:5.0.7:::::::*
eaton	proview	5.0.8	cpe:2.3:a:eaton:proview:5.0.8:::::::*

Rows per page:

1-10 of 121

References

www.securityfocus.com/bid/75936

ics-cert.us-cert.gov/advisories/ICSA-15-006-01

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0.004

Percentile

74.9%

JSON

Related for NVD:CVE-2014-9196

cvelist1 cve1 ics1 prion1