CVE-2013-0693

EUVD-2013-0704
The kernel in ENEA OSE on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier performs network-beacon broadcasts, which allows remote attackers to obtain potentially sensitive information about device presence by listening for broadcast traffic.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 69%
Affected Products (NVD)
VendorProductVersion
eneaose
𝑥
≤ 1.20
emersonroc_800l_remote_terminal_unit
-
eneaose
𝑥
≤ 2.30
emersondl_8000_remote_terminal_unit
-
eneaose
𝑥
≤ 3.50
emersonroc_800_remote_terminal_unit
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://ics-cert.us-cert.gov/advisories/ICSA-13-259-01
http://ics-cert.us-cert.gov/advisories/ICSA-13-259-01