Vulnerability Description
The CodeWrights HART Device Type Manager (DTM) library in Emerson HART DTM before 1.4.181 allows physically proximate attackers to cause a denial of service (DTM outage and FDT Frame application hang) by transmitting crafted response packets on the 4-20 mA current loop.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Codewrights | Hart Device Type Manager | <= 1.0.44 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/71952
- http://www2.emersonprocess.com/siteadmincenter/PM%20Central%20Web%20Documents/EMVendor Advisory
- https://ics-cert.us-cert.gov/advisories/ICSA-15-008-01AThird Party AdvisoryUS Government Resource
- https://ics-cert.us-cert.gov/advisories/ICSA-15-237-01
- http://www.securityfocus.com/bid/71952
- http://www2.emersonprocess.com/siteadmincenter/PM%20Central%20Web%20Documents/EMVendor Advisory
- https://ics-cert.us-cert.gov/advisories/ICSA-15-008-01AThird Party AdvisoryUS Government Resource
- https://ics-cert.us-cert.gov/advisories/ICSA-15-237-01
FAQ
What is CVE-2014-9191?
CVE-2014-9191 is a vulnerability with a CVSS score of 2.1 (LOW). The CodeWrights HART Device Type Manager (DTM) library in Emerson HART DTM before 1.4.181 allows physically proximate attackers to cause a denial of service (DTM outage and FDT Frame application hang)...
How severe is CVE-2014-9191?
CVE-2014-9191 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-9191?
Check the references section above for vendor advisories and patch information. Affected products include: Codewrights Hart Device Type Manager.