← volver
CVE-2014-0762

CG Automation ePAQ-9410 Substation Gateway Improper Input Validation

CVSS 4.7 EPSS 0.3%CWE-20
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 4.7EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
28 ago 2014Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
The CG Automation Software DNP3 driver, used in the ePAQ-9410 Substation Gateway products, does not validate input correctly. An attacker could cause the software to go into an infinite loop, causing the process to crash. The system must be restarted manually to clear the condition.
AV:L/AC:M/Au:N/C:N/I:N/A:C

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →