CVE-2013-2824

3 documents3 sources
Severity
7.8HIGH
EPSS
0.2%
top 53.70%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Schneider-electric CitectscadaSchneider-electric Powerlogic ScadaSchneider-electric Struxureware Powerscada Expert+1 more
Timeline
PublishedFeb 26
Latest updateMay 17

Description

Schneider Electric StruxureWare SCADA Expert Vijeo Citect 7.40, Vijeo Citect 7.20 through 7.30SP1, CitectSCADA 7.20 through 7.30SP1, StruxureWare PowerSCADA Expert 7.30 through 7.30SR1, and PowerLogic SCADA 7.20 through 7.20SR1 do not properly handle exceptions, which allows remote attackers to cause a denial of service via a crafted packet.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages4 packages

Patches

Patch: ics-cert.us-cert.govPatch: www.citect.schneider-electric.comPatch: ics-cert.us-cert.gov

🔴Vulnerability Details

2
GHSA
GHSA-hcf2-m3fc-44v4: Schneider Electric StruxureWare SCADA Expert Vijeo Citect 72022-05-17
CVEList
CVE-2013-2824: Schneider Electric StruxureWare SCADA Expert Vijeo Citect 72014-02-26
CVE-2013-2824 (HIGH CVSS 7.8) | Schneider Electric StruxureWare SCA | cvebase.io