Vulnerability Description
The DNP3 service in the Outstation component on Elecsys Director Gateway devices with kernel 2.6.32.11ael1 and earlier allows remote attackers to cause a denial of service (CPU consumption and communication outage) via crafted input.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Elecsyscorp | Director Dnp3 Outstation Kernel | 2.6.32.11 |
| Elecsyscorp | Director Industrial Communication Gateway | - |
Related Weaknesses (CWE)
References
- http://ics-cert.us-cert.gov/advisories/ICSA-13-337-01US Government Resource
- http://ics-cert.us-cert.gov/advisories/ICSA-13-337-01US Government Resource
FAQ
What is CVE-2013-2825?
CVE-2013-2825 is a vulnerability with a CVSS score of 4.3 (MEDIUM). The DNP3 service in the Outstation component on Elecsys Director Gateway devices with kernel 2.6.32.11ael1 and earlier allows remote attackers to cause a denial of service (CPU consumption and communi...
How severe is CVE-2013-2825?
CVE-2013-2825 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-2825?
Check the references section above for vendor advisories and patch information. Affected products include: Elecsyscorp Director Dnp3 Outstation Kernel, Elecsyscorp Director Industrial Communication Gateway.