CVE-2014-2379

Sensys Networks VSN240-F and VSN240-T sensors VDS before 2.10.1 and TrafficDOT before 2.10.3 do not use encryption, which allows remote attackers to interfere with traffic control by replaying transmissions on a wireless network.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.4 UNKNOWN
ADJACENT_NETWORK
MEDIUM
AV:A/AC:M/Au:N/C:P/I:P/A:P
icscertCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 18%
VendorProductVersion
sensysnetworkstrafficdot
𝑥
≤ 2.10.2
sensysnetworkstrafficdot
2.8.3
sensysnetworkstrafficdot
2.10.0
sensysnetworkstrafficdot
2.10.1
sensysnetworksvsn240-f
-
sensysnetworksvsn240-t
-
sensysnetworksvds
𝑥
≤ 2.10.0
sensysnetworksvds
1.8.5
sensysnetworksvds
1.8.7
sensysnetworksvds
2.6.3
sensysnetworksvds
2.6.4
sensysnetworksvsn240-f
-
sensysnetworksvsn240-t
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://ics-cert.us-cert.gov/advisories/ICSA-14-247-01
https://ics-cert.us-cert.gov/advisories/ICSA-14-247-01