7.8
CVE-2012-4714
- EPSS 3.22%
- Veröffentlicht 18.04.2013 02:25:36
- Zuletzt bearbeitet 29.04.2026 01:13:23
- Quelle ics-cert@hq.dhs.gov
- CVE-Watchlists
- Unerledigt
Integer overflow in RNADiagnostics.dll in Rockwell Automation FactoryTalk Services Platform (FTSP) CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 allows remote attackers to cause a denial of service (service outage or RNADiagReceiver.exe daemon crash) via UDP data that specifies a large integer value.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Rockwellautomation ≫ Factorytalk Services Platform Versioncpr9
Rockwellautomation ≫ Factorytalk Services Platform Versioncpr9 Updatesr1
Rockwellautomation ≫ Factorytalk Services Platform Versioncpr9 Updatesr2
Rockwellautomation ≫ Factorytalk Services Platform Versioncpr9 Updatesr3
Rockwellautomation ≫ Factorytalk Services Platform Versioncpr9 Updatesr4
Rockwellautomation ≫ Factorytalk Services Platform Versioncpr9 Updatesr5
Rockwellautomation ≫ Factorytalk Services Platform Versioncpr9 Updatesr5.1
Rockwellautomation ≫ Factorytalk Services Platform Versioncpr9 Updatesr6
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.22% | 0.866 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 10 | 6.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:C
|
http://ics-cert.us-cert.gov/pdf/ICSA-13-095-02.pdf
https://rockwellautomation.custhelp.com/app/answers/detail/a_id/537599