Vulnerability Description
CimWebServer in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with CIMPLICITY, allows remote attackers to execute arbitrary commands or cause a denial of service (daemon crash) via a crafted packet.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ge | Intelligent Platforms Proficy Hmi\/Scada Cimplicity | 4.01 |
| Ge | Intelligent Platforms Proficy Process Systems With Cimplicity | - |
| Ge | Intelligent Platforms Proficy Process Systems | - |
Related Weaknesses (CWE)
References
- http://www.us-cert.gov/control_systems/pdf/ICSA-13-022-02.pdfUS Government Resource
- http://www.us-cert.gov/control_systems/pdf/ICSA-13-022-02.pdfUS Government Resource
FAQ
What is CVE-2013-0654?
CVE-2013-0654 is a vulnerability with a CVSS score of 9.3 (HIGH). CimWebServer in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with CIMPLICITY, allows remote attackers to execute arbitrary commands or cause a ...
How severe is CVE-2013-0654?
CVE-2013-0654 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-0654?
Check the references section above for vendor advisories and patch information. Affected products include: Ge Intelligent Platforms Proficy Hmi\/Scada Cimplicity, Ge Intelligent Platforms Proficy Process Systems With Cimplicity, Ge Intelligent Platforms Proficy Process Systems.