CVE-2019-13537
N/A
N/A
Summary
The IEC870IP driver for AVEVA’s Vijeo Citect and Citect SCADA and Schneider Electric’s Power SCADA Operation has a buffer overflow vulnerability that could result in a server-side crash.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| AVEVA | Vijeo Citect and Citect SCADA | IEC870IP driver v4.14.02 and prior | affected |
Weaknesses
- CWE-121: STACK-BASED BUFFER OVERFLOW CWE-121
ADP Enrichment
CVE Program Container
Additional References
- https://www.us-cert.gov/ics/advisories/icsa-19-290-01
- https://sw.aveva.com/hubfs/assets-2018/pdf/security-bulletin/SecurityBulletin_LFSec139.pdf
References
- https://www.us-cert.gov/ics/advisories/icsa-19-290-01
- https://sw.aveva.com/hubfs/assets-2018/pdf/security-bulletin/SecurityBulletin_LFSec139.pdf
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.