Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
CVE-2013-0694
CVE information
Published
Last Modified
CVSSv2.0 Severity
Impact Analysis
Description
The Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier have hardcoded credentials in a ROM, which makes it easier for remote attackers to obtain shell access to the underlying OS by leveraging knowledge of the ROM contents from a product installation elsewhere..
CVSSv2.0 Score
- Severity
- High
- Base Score
- 9/10
- Exploit Score
- 8/10
- Access Vector
- Network
- Access Complexity
- Low
- Authentication Required
- Single
- Impact Score
- 10/10
- Confidentiality Impact
- Complete
- Availability Impact
- Complete
- Integrity Impact
- Complete
Products Affected
CPE | Affected | Vulnerable | Excluding | Edit |
---|---|---|---|---|
cpe:2.3:o:enea:ose:*:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:h:emerson:dl_8000_remote_terminal_unit:-:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:enea:ose:*:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:h:emerson:roc_800l_remote_terminal_unit:-:*:*:*:*:*: |
Yes
|
- | ||
cpe:2.3:o:enea:ose:*:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:h:emerson:roc_800_remote_terminal_unit:-:*:*:*:*:*:* |
Yes
|
- |