CVE-2013-2784
published 2013-07-10CVE-2013-2784: Triangle Research International (aka Tri) Nano-10 PLC devices with firmware before r81 use an incorrect algorithm for bounds checking of data in Modbus/TCP…
PriorityP344high7.8CVSS 2.0
AVNACLAuNCNINAC
EXPLOIT
EPSS
4.04%
89.3th percentile
Triangle Research International (aka Tri) Nano-10 PLC devices with firmware before r81 use an incorrect algorithm for bounds checking of data in Modbus/TCP packets, which allows remote attackers to cause a denial of service (networking outage) via a crafted packet to TCP port 502.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| triplc | nano-10_plc_firmware | <= r80 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Triangle Research Nano 10 PLC Denial of Service
cisa_ics·2013-07-08
Triangle Research Nano 10 PLC Denial of Service
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Triangle Research Nano 10 PLC Denial of Service
Last RevisedJuly 08, 2013
Alert CodeICSA-13-189-02
## OVERVIEW
Researcher Jon Christmas of Solera Networks has identified an improper input validation vulnerability in Triangle Research International, Inc.’s (Tri Inc.) Nano‑10 programmable logic controller (PLC). Tri Inc. has produced a firmware upgrade and tested it to validate that the upgrade resolves the vulnerability.
This vulnerability is remotely exploitable.
## AFFECTED PRODUCTS
The following Tri Inc. Nano-10 PLC firmware versions are affected:
- All firmware versions p
GHSA
GHSA-x2jj-6rhr-24q9: Triangle Research International (aka Tri) Nano-10 PLC devices with firmware before r81 use an incorrect algorithm for bounds checking of data in Modbu
ghsa_unreviewed·2022-05-17
CVE-2013-2784 [HIGH] GHSA-x2jj-6rhr-24q9: Triangle Research International (aka Tri) Nano-10 PLC devices with firmware before r81 use an incorrect algorithm for bounds checking of data in Modbu
Triangle Research International (aka Tri) Nano-10 PLC devices with firmware before r81 use an incorrect algorithm for bounds checking of data in Modbus/TCP packets, which allows remote attackers to cause a denial of service (networking outage) via a crafted packet to TCP port 502.
No detection rules found.
No writeups or analysis indexed.
2013-07-10
Published