CVE-2014-2343

EPSS 0.09%
Published 30.05.2014 23:55:02
Last modified 02.10.2025 23:15:30
Source ics-cert@hq.dhs.gov
Teams watchlist Login
Open Login

Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows physically proximate attackers to cause a denial of service (excessive data processing) via a crafted DNP request over a serial line.

Affected products Warnungen 0 Metrics 3 CWE 2 References 6

Data is provided by the National Vulnerability Database (NVD)

Trianglemicroworks ≫ Scada Data Gateway Version <= 3.00.0633

Trianglemicroworks ≫ Scada Data Gateway Version2.50

Trianglemicroworks ≫ Scada Data Gateway Version2.50.0309

Trianglemicroworks ≫ Scada Data Gateway Version2.51

Trianglemicroworks ≫ Scada Data Gateway Version2.53

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0515

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0516

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0517

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0518

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0528

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0529

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0536

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0540

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0544

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0545

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0552

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0553

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0558

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0561

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0562

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0564

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0565

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0566

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0567

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0569

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0570

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0571

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0572

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0573

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0574

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0575

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0576

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0577

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0578

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0579

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0580

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0581

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0582

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0583

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0584

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0586

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0587

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0588

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0589

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0590

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0591

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0592

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0594

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0595

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0596

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0597

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0598

Trianglemicroworks ≫ Scada Data Gateway Version2.54.0599

Trianglemicroworks ≫ Scada Data Gateway Version3.00

Trianglemicroworks ≫ Scada Data Gateway Version3.00.0612

Trianglemicroworks ≫ Scada Data Gateway Version3.00.0615

Trianglemicroworks ≫ Scada Data Gateway Version3.00.0616

Trianglemicroworks ≫ Scada Data Gateway Version3.00.0630

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.09%	0.265

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	2.1	3.9	2.9	AV:L/AC:L/Au:N/C:N/I:N/A:P
ics-cert@hq.dhs.gov	1.2	1.9	2.9	AV:L/AC:H/Au:N/C:N/I:N/A:P

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

http://ics-cert.us-cert.gov/advisories/ICSA-14-149-01

US Government Resource

http://www.trianglemicroworks.com/products/scada-data-gateway/what%27s-new

https://www.cisa.gov/news-events/ics-advisories/icsa-14-149-01

https://nvd.nist.gov/vuln/detail/CVE-2014-2343

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-2343

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-2343

EUVD