CVE-2014-2342 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Vector
NIST	NIST	4.3 UNKNOWN	NETWORK	MEDIUM	AV:N/AC:M/Au:N/C:N/I:N/A:P
icscert	CNA	---			---
CVE	ADP	---			---

Base Score

CVSS 3.x

EPSS Score

Percentile: 71%

Vendor	Product	Version
trianglemicroworks	scada_data_gateway	𝑥 ≤ 3.00.0633
trianglemicroworks	scada_data_gateway	2.50
trianglemicroworks	scada_data_gateway	2.50.0309
trianglemicroworks	scada_data_gateway	2.51
trianglemicroworks	scada_data_gateway	2.53
trianglemicroworks	scada_data_gateway	2.54.0515
trianglemicroworks	scada_data_gateway	2.54.0516
trianglemicroworks	scada_data_gateway	2.54.0517
trianglemicroworks	scada_data_gateway	2.54.0518
trianglemicroworks	scada_data_gateway	2.54.0528
trianglemicroworks	scada_data_gateway	2.54.0529
trianglemicroworks	scada_data_gateway	2.54.0536
trianglemicroworks	scada_data_gateway	2.54.0540
trianglemicroworks	scada_data_gateway	2.54.0544
trianglemicroworks	scada_data_gateway	2.54.0545
trianglemicroworks	scada_data_gateway	2.54.0552
trianglemicroworks	scada_data_gateway	2.54.0553
trianglemicroworks	scada_data_gateway	2.54.0558
trianglemicroworks	scada_data_gateway	2.54.0561
trianglemicroworks	scada_data_gateway	2.54.0562
trianglemicroworks	scada_data_gateway	2.54.0564
trianglemicroworks	scada_data_gateway	2.54.0565
trianglemicroworks	scada_data_gateway	2.54.0566
trianglemicroworks	scada_data_gateway	2.54.0567
trianglemicroworks	scada_data_gateway	2.54.0569
trianglemicroworks	scada_data_gateway	2.54.0570
trianglemicroworks	scada_data_gateway	2.54.0571
trianglemicroworks	scada_data_gateway	2.54.0572
trianglemicroworks	scada_data_gateway	2.54.0573
trianglemicroworks	scada_data_gateway	2.54.0574
trianglemicroworks	scada_data_gateway	2.54.0575
trianglemicroworks	scada_data_gateway	2.54.0576
trianglemicroworks	scada_data_gateway	2.54.0577
trianglemicroworks	scada_data_gateway	2.54.0578
trianglemicroworks	scada_data_gateway	2.54.0579
trianglemicroworks	scada_data_gateway	2.54.0580
trianglemicroworks	scada_data_gateway	2.54.0581
trianglemicroworks	scada_data_gateway	2.54.0582
trianglemicroworks	scada_data_gateway	2.54.0583
trianglemicroworks	scada_data_gateway	2.54.0584
trianglemicroworks	scada_data_gateway	2.54.0586
trianglemicroworks	scada_data_gateway	2.54.0587
trianglemicroworks	scada_data_gateway	2.54.0588
trianglemicroworks	scada_data_gateway	2.54.0589
trianglemicroworks	scada_data_gateway	2.54.0590
trianglemicroworks	scada_data_gateway	2.54.0591
trianglemicroworks	scada_data_gateway	2.54.0592
trianglemicroworks	scada_data_gateway	2.54.0594
trianglemicroworks	scada_data_gateway	2.54.0595
trianglemicroworks	scada_data_gateway	2.54.0596
trianglemicroworks	scada_data_gateway	2.54.0597
trianglemicroworks	scada_data_gateway	2.54.0598
trianglemicroworks	scada_data_gateway	2.54.0599
trianglemicroworks	scada_data_gateway	3.00
trianglemicroworks	scada_data_gateway	3.00.0612
trianglemicroworks	scada_data_gateway	3.00.0615
trianglemicroworks	scada_data_gateway	3.00.0616
trianglemicroworks	scada_data_gateway	3.00.0630

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-400 - Uncontrolled Resource Consumption
The software does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.
CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

http://www.trianglemicroworks.com/products/scada-data-gateway/what%27s-new

https://www.cisa.gov/news-events/ics-advisories/icsa-14-149-01

http://ics-cert.us-cert.gov/advisories/ICSA-14-149-01

http://www.trianglemicroworks.com/products/scada-data-gateway/what%27s-new