// For flags

CVE-2019-13524

 

Severity Score

7.5
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

GE PACSystems RX3i CPE100/115: All versions prior to R9.85,CPE302/305/310/330/400/410: All versions prior to R9.90,CRU/320 All versions(End of Life) may allow an attacker sending specially manipulated packets to cause the module state to change to halt-mode, resulting in a denial-of-service condition. An operator must reboot the CPU module after removing battery or energy pack to recover from halt-mode.

GE PACSystems versión RX3i CPE100/115: todas las versiones anteriores a R9.85,CPE302/305/310/330/400/410: todas las versiones anteriores a R9.90,CRU/320, todas las versiones (End of Life), pueden permitir a un atacante enviar paquetes especialmente manipulados para causar que el estado del módulo cambie al modo halt, resultando en una condición de denegación de servicio. Un operador necesita reiniciar el módulo de la CPU después de quitar la batería o el paquete de energía para recuperase del modo halt.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
None
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2019-07-11 CVE Reserved
  • 2020-01-16 CVE Published
  • 2023-03-08 EPSS Updated
  • 2024-08-04 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-20: Improper Input Validation
CAPEC
References (1)
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Emerson
Search vendor "Emerson"
Rx3i Cpe100 Firmware
Search vendor "Emerson" for product "Rx3i Cpe100 Firmware"
< r9.85
Search vendor "Emerson" for product "Rx3i Cpe100 Firmware" and version " < r9.85"
-
Affected
in Emerson
Search vendor "Emerson"
Rx3i Cpe100
Search vendor "Emerson" for product "Rx3i Cpe100"
--
Safe
Emerson
Search vendor "Emerson"
Rx3i Cpe115 Firmware
Search vendor "Emerson" for product "Rx3i Cpe115 Firmware"
< r9.85
Search vendor "Emerson" for product "Rx3i Cpe115 Firmware" and version " < r9.85"
-
Affected
in Emerson
Search vendor "Emerson"
Rx3i Cpe115
Search vendor "Emerson" for product "Rx3i Cpe115"
--
Safe
Emerson
Search vendor "Emerson"
Rx3i Cpe302 Firmware
Search vendor "Emerson" for product "Rx3i Cpe302 Firmware"
< r9.90
Search vendor "Emerson" for product "Rx3i Cpe302 Firmware" and version " < r9.90"
-
Affected
in Emerson
Search vendor "Emerson"
Rx3i Cpe302
Search vendor "Emerson" for product "Rx3i Cpe302"
--
Safe
Emerson
Search vendor "Emerson"
Rx3i Cpe305 Firmware
Search vendor "Emerson" for product "Rx3i Cpe305 Firmware"
< r9.90
Search vendor "Emerson" for product "Rx3i Cpe305 Firmware" and version " < r9.90"
-
Affected
in Emerson
Search vendor "Emerson"
Rx3i Cpe305
Search vendor "Emerson" for product "Rx3i Cpe305"
--
Safe
Emerson
Search vendor "Emerson"
Rx3i Cpe310 Firmware
Search vendor "Emerson" for product "Rx3i Cpe310 Firmware"
< r9.90
Search vendor "Emerson" for product "Rx3i Cpe310 Firmware" and version " < r9.90"
-
Affected
in Emerson
Search vendor "Emerson"
Rx3i Cpe310
Search vendor "Emerson" for product "Rx3i Cpe310"
--
Safe
Emerson
Search vendor "Emerson"
Rx3i Cru320 Firmware
Search vendor "Emerson" for product "Rx3i Cru320 Firmware"
*-
Affected
in Emerson
Search vendor "Emerson"
Rx3i Cru320
Search vendor "Emerson" for product "Rx3i Cru320"
--
Safe
Emerson
Search vendor "Emerson"
Rx3i Cpe330 Firmware
Search vendor "Emerson" for product "Rx3i Cpe330 Firmware"
< r9.90
Search vendor "Emerson" for product "Rx3i Cpe330 Firmware" and version " < r9.90"
-
Affected
in Emerson
Search vendor "Emerson"
Rx3i Cpe330
Search vendor "Emerson" for product "Rx3i Cpe330"
--
Safe
Emerson
Search vendor "Emerson"
Rx3i Cpe400 Firmware
Search vendor "Emerson" for product "Rx3i Cpe400 Firmware"
< r9.90
Search vendor "Emerson" for product "Rx3i Cpe400 Firmware" and version " < r9.90"
-
Affected
in Emerson
Search vendor "Emerson"
Rx3i Cpe400
Search vendor "Emerson" for product "Rx3i Cpe400"
--
Safe
Emerson
Search vendor "Emerson"
Rx3i Cpl410 Firmware
Search vendor "Emerson" for product "Rx3i Cpl410 Firmware"
< r9.90
Search vendor "Emerson" for product "Rx3i Cpl410 Firmware" and version " < r9.90"
-
Affected
in Emerson
Search vendor "Emerson"
Rx3i Cpl410
Search vendor "Emerson" for product "Rx3i Cpl410"
--
Safe