CVE-2013-2828: Input Validation
First published: Sat Apr 12 2014(Updated: )
The DNP Master Driver in the OSIsoft PI Interface before 3.1.2.54 for DNP3 allows physically proximate attackers to cause a denial of service (interface shutdown) via crafted input over a serial line.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| OSIsoft PI Interface | <=3.1.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2013-2828?
CVE-2013-2828 has a high severity rating due to its potential to cause a denial of service.
How do I fix CVE-2013-2828?
To fix CVE-2013-2828, update the OSIsoft PI Interface to version 3.1.2.54 or later.
What type of attacks can exploit CVE-2013-2828?
CVE-2013-2828 can be exploited by physically proximate attackers sending crafted input over a serial line.
What systems are affected by CVE-2013-2828?
CVE-2013-2828 affects OSIsoft PI Interface versions up to 3.1.2.
What is the impact of CVE-2013-2828 on operational infrastructure?
The impact of CVE-2013-2828 includes the potential shutdown of the DNP Master Driver, leading to a loss in communication.
- collector/nvd-index
- vendor/osisoft
- canonical/osisoft pi interface
- version/osisoft pi interface/3.1.2