The kernel in ENEA OSE on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier performs network-beacon broadcasts, which allows remote attackers to obtain potentially sensitive information about device presence by listening for broadcast traffic.
References
Link | Resource |
---|---|
http://ics-cert.us-cert.gov/advisories/ICSA-13-259-01 | US Government Resource |
http://ics-cert.us-cert.gov/advisories/ICSA-13-259-01 | US Government Resource |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
History
21 Nov 2024, 01:48
Type | Values Removed | Values Added |
---|---|---|
References | () http://ics-cert.us-cert.gov/advisories/ICSA-13-259-01 - US Government Resource |
Information
Published : 2013-10-03 11:04
Updated : 2024-11-21 01:48
NVD link : CVE-2013-0693
Mitre link : CVE-2013-0693
CVE.ORG link : CVE-2013-0693
JSON object : View
Products Affected
emerson
- roc_800l_remote_terminal_unit
- dl_8000_remote_terminal_unit
- roc_800_remote_terminal_unit
enea
- ose
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor