CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-4714

Integer overflow in RNADiagnostics.dll in Rockwell Automation FactoryTalk Services Platform (FTSP) CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 allows remote attackers to cause a denial of service (service outage or RNADiagReceiver.exe daemon crash) via UDP data that specifies a large integer value.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.9%

CVSS Severity

CVSS v2 Score 7.8

References

http://ics-cert.us-cert.gov/pdf/ICSA-13-095-02.pdf
https://rockwellautomation.custhelp.com/app/answers/detail/a_id/537599
http://ics-cert.us-cert.gov/pdf/ICSA-13-095-02.pdf
https://rockwellautomation.custhelp.com/app/answers/detail/a_id/537599

Products affected by CVE-2012-4714

Rockwellautomation » Factorytalk Services Platform » Version: cpr9

cpe:2.3:a:rockwellautomation:factorytalk_services_platform:cpr9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-4714

Products

Pricing

Contact Us