Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2013-0662 (GCVE-0-2013-0662)
Vulnerability from cvelistv5 – Published: 2014-03-28 19:00 – Updated: 2024-08-06 14:33
VLAI
EPSS
Summary
Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
5 references
| URL | Tags |
|---|---|
| http://download.schneider-electric.com/files?p_Do… | x_refsource_CONFIRM |
| https://www.exploit-db.com/exploits/45219/ | exploitx_refsource_EXPLOIT-DB |
| http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01 | x_refsource_MISC |
| http://www.securityfocus.com/bid/66500 | vdb-entryx_refsource_BID |
| https://www.exploit-db.com/exploits/45220/ | exploitx_refsource_EXPLOIT-DB |
Date Public
2014-03-27 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T14:33:05.415Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202013-070-01"
},
{
"name": "45219",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB",
"x_transferred"
],
"url": "https://www.exploit-db.com/exploits/45219/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01"
},
{
"name": "66500",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/66500"
},
{
"name": "45220",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB",
"x_transferred"
],
"url": "https://www.exploit-db.com/exploits/45220/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-03-27T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-08-22T09:57:01.000Z",
"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"shortName": "icscert"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202013-070-01"
},
{
"name": "45219",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB"
],
"url": "https://www.exploit-db.com/exploits/45219/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01"
},
{
"name": "66500",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/66500"
},
{
"name": "45220",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB"
],
"url": "https://www.exploit-db.com/exploits/45220/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2013-0662",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202013-070-01",
"refsource": "CONFIRM",
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202013-070-01"
},
{
"name": "45219",
"refsource": "EXPLOIT-DB",
"url": "https://www.exploit-db.com/exploits/45219/"
},
{
"name": "http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01",
"refsource": "MISC",
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01"
},
{
"name": "66500",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/66500"
},
{
"name": "45220",
"refsource": "EXPLOIT-DB",
"url": "https://www.exploit-db.com/exploits/45220/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
"assignerShortName": "icscert",
"cveId": "CVE-2013-0662",
"datePublished": "2014-03-28T19:00:00.000Z",
"dateReserved": "2012-12-19T00:00:00.000Z",
"dateUpdated": "2024-08-06T14:33:05.415Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2013-0662",
"date": "2026-06-04",
"epss": "0.50578",
"percentile": "0.979"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2013-0662\",\"sourceIdentifier\":\"ics-cert@hq.dhs.gov\",\"published\":\"2014-04-01T06:17:08.240\",\"lastModified\":\"2026-05-06T22:30:45.220\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header.\"},{\"lang\":\"es\",\"value\":\"M\u00faltiples desbordamientos de buffer basado en pila en ModbusDrv.exe en Schneider Electric Modbus Serial Driver 1.10 hasta 3.2 permiten a atacantes remotos ejecutar c\u00f3digo arbitrario a trav\u00e9s de un valor de tama\u00f1o de buffer grande en Modbus Application Header.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:concept:*:sr7:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.6\",\"matchCriteriaId\":\"C59B889A-707B-4AEC-9D7B-84F5F67AF022\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:modbus_serial_driver:1.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"002ABE6D-4491-46F4-A412-A3B4CBDBF049\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:modbus_serial_driver:2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D807408B-78B5-4E9A-9CCB-D35BFFC968E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:modbus_serial_driver:3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C437D283-D2BA-4C57-8A85-70BC94F3E852\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:modbuscommdtm_sl:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.1.2\",\"matchCriteriaId\":\"AB3CD5BD-EDA3-4ABE-87CE-9A1ED11880FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:opc_factory_server:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"3.5.0\",\"matchCriteriaId\":\"E7D490C3-FA4F-4434-927A-84DA392D13AF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:opc_factory_server:3.34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B637B76-2F68-4080-A1EB-5BA45CC2662F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:opc_factory_server:3.35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F8874360-6B9A-40C3-A95F-8FD18F73244D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:pl7:*:sp7:*:*:*:*:*:*\",\"versionEndIncluding\":\"4.5\",\"matchCriteriaId\":\"494E62B9-52A2-4344-B46A-D633536D8A52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:powersuite:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.6\",\"matchCriteriaId\":\"472AB761-8CDD-421D-A931-8F43E5DBA1A7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:sft2841:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"14.0\",\"matchCriteriaId\":\"70B3EAE9-8C2D-4384-A6DD-AC3A86A54047\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:sft2841:13.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"291A4B76-9847-4B25-8DB2-4482E8D2B01E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:somachine:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"3.1\",\"matchCriteriaId\":\"58423C92-AFAA-4BB0-BC7C-019B47F4E881\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:somachine:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1DD168A8-F73B-4055-AC6F-A8EAC48C20D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:somachine:3.0:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"44612FE6-AF0F-4BEE-A0E7-232BE102DAC1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:somove:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.7\",\"matchCriteriaId\":\"D4D0F940-028F-4F4B-89DD-88EB239F2BEE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:twidosuite:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.31.04\",\"matchCriteriaId\":\"9DA4DF22-8DAD-4A34-B326-AEAEDFF2BEB8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:unity_pro:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"7.0\",\"matchCriteriaId\":\"5D0D3207-EE90-4EBF-B3D3-6255DC2B23A4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:unity_pro:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B606E20-4362-455E-84EA-8395880EBCDA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider-electric:unityloader:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.3\",\"matchCriteriaId\":\"3F9B1196-A188-4985-94E4-ADEA3557AB2C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:schneider_electric:somachine:3.0:*:*:*:xs:*:*:*\",\"matchCriteriaId\":\"4B2730EE-D37A-4745-9F07-A9CC378F0573\"}]}]}],\"references\":[{\"url\":\"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202013-070-01\",\"source\":\"ics-cert@hq.dhs.gov\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01\",\"source\":\"ics-cert@hq.dhs.gov\",\"tags\":[\"Mitigation\",\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.securityfocus.com/bid/66500\",\"source\":\"ics-cert@hq.dhs.gov\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.exploit-db.com/exploits/45219/\",\"source\":\"ics-cert@hq.dhs.gov\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.exploit-db.com/exploits/45220/\",\"source\":\"ics-cert@hq.dhs.gov\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202013-070-01\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.securityfocus.com/bid/66500\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.exploit-db.com/exploits/45219/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.exploit-db.com/exploits/45220/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]}],\"evaluatorImpact\":\"Per: http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01\\n\\n\\\"The following Schneider Electric products bundle the Schneider Electric Modbus Serial Driver (ModbusDrv.exe), which is started when attempting to connect to a Programmable Logic Controller (PLC) via the serial port of a personal computer:\\n\\n TwidoSuite Versions 2.31.04 and earlier,\\n PowerSuite Versions 2.6 and earlier,\\n SoMove Versions 1.7 and earlier,\\n SoMachine Versions 2.0, 3.0, 3.1, and 3.0 XS,\\n Unity Pro Versions 7.0 and earlier,\\n UnityLoader Versions 2.3 and earlier,\\n Concept Versions 2.6 SR7 and earlier,\\n ModbusCommDTM sl Versions 2.1.2 and earlier,\\n PL7 Versions 4.5 SP5 and earlier,\\n SFT2841 Versions 14, 13.1 and earlier, and\\n OPC Factory Server Versions 3.50 and earlier.\\n\\nModbus Serial Driver versions that are affected:\\n\\n Windows XP 32 bit V1.10 IE v37,\\n Windows Vista 32 bit V2.2 IE12,\\n Windows 7 32 bit V2.2 IE12, and\\n Windows 7 64 bit V3.2 IE12.\\\"\"}}"
}
}
FKIE_CVE-2013-0662
Vulnerability from fkie_nvd - Published: 2014-04-01 06:17 - Updated: 2026-05-06 22:30
Severity
Summary
Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:schneider-electric:concept:*:sr7:*:*:*:*:*:*",
"matchCriteriaId": "C59B889A-707B-4AEC-9D7B-84F5F67AF022",
"versionEndIncluding": "2.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:modbus_serial_driver:1.10:*:*:*:*:*:*:*",
"matchCriteriaId": "002ABE6D-4491-46F4-A412-A3B4CBDBF049",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:modbus_serial_driver:2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "D807408B-78B5-4E9A-9CCB-D35BFFC968E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:modbus_serial_driver:3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "C437D283-D2BA-4C57-8A85-70BC94F3E852",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:modbuscommdtm_sl:*:*:*:*:*:*:*:*",
"matchCriteriaId": "AB3CD5BD-EDA3-4ABE-87CE-9A1ED11880FE",
"versionEndIncluding": "2.1.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:opc_factory_server:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E7D490C3-FA4F-4434-927A-84DA392D13AF",
"versionEndIncluding": "3.5.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:opc_factory_server:3.34:*:*:*:*:*:*:*",
"matchCriteriaId": "6B637B76-2F68-4080-A1EB-5BA45CC2662F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:opc_factory_server:3.35:*:*:*:*:*:*:*",
"matchCriteriaId": "F8874360-6B9A-40C3-A95F-8FD18F73244D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:pl7:*:sp7:*:*:*:*:*:*",
"matchCriteriaId": "494E62B9-52A2-4344-B46A-D633536D8A52",
"versionEndIncluding": "4.5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:powersuite:*:*:*:*:*:*:*:*",
"matchCriteriaId": "472AB761-8CDD-421D-A931-8F43E5DBA1A7",
"versionEndIncluding": "2.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:sft2841:*:*:*:*:*:*:*:*",
"matchCriteriaId": "70B3EAE9-8C2D-4384-A6DD-AC3A86A54047",
"versionEndIncluding": "14.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:sft2841:13.1:*:*:*:*:*:*:*",
"matchCriteriaId": "291A4B76-9847-4B25-8DB2-4482E8D2B01E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:somachine:*:*:*:*:*:*:*:*",
"matchCriteriaId": "58423C92-AFAA-4BB0-BC7C-019B47F4E881",
"versionEndIncluding": "3.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:somachine:2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "1DD168A8-F73B-4055-AC6F-A8EAC48C20D6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:somachine:3.0:-:*:*:*:*:*:*",
"matchCriteriaId": "44612FE6-AF0F-4BEE-A0E7-232BE102DAC1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:somove:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D4D0F940-028F-4F4B-89DD-88EB239F2BEE",
"versionEndIncluding": "1.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:twidosuite:*:*:*:*:*:*:*:*",
"matchCriteriaId": "9DA4DF22-8DAD-4A34-B326-AEAEDFF2BEB8",
"versionEndIncluding": "2.31.04",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:unity_pro:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5D0D3207-EE90-4EBF-B3D3-6255DC2B23A4",
"versionEndIncluding": "7.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:unity_pro:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "9B606E20-4362-455E-84EA-8395880EBCDA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider-electric:unityloader:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3F9B1196-A188-4985-94E4-ADEA3557AB2C",
"versionEndIncluding": "2.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:schneider_electric:somachine:3.0:*:*:*:xs:*:*:*",
"matchCriteriaId": "4B2730EE-D37A-4745-9F07-A9CC378F0573",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header."
},
{
"lang": "es",
"value": "M\u00faltiples desbordamientos de buffer basado en pila en ModbusDrv.exe en Schneider Electric Modbus Serial Driver 1.10 hasta 3.2 permiten a atacantes remotos ejecutar c\u00f3digo arbitrario a trav\u00e9s de un valor de tama\u00f1o de buffer grande en Modbus Application Header."
}
],
"evaluatorImpact": "Per: http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01\n\n\"The following Schneider Electric products bundle the Schneider Electric Modbus Serial Driver (ModbusDrv.exe), which is started when attempting to connect to a Programmable Logic Controller (PLC) via the serial port of a personal computer:\n\n TwidoSuite Versions 2.31.04 and earlier,\n PowerSuite Versions 2.6 and earlier,\n SoMove Versions 1.7 and earlier,\n SoMachine Versions 2.0, 3.0, 3.1, and 3.0 XS,\n Unity Pro Versions 7.0 and earlier,\n UnityLoader Versions 2.3 and earlier,\n Concept Versions 2.6 SR7 and earlier,\n ModbusCommDTM sl Versions 2.1.2 and earlier,\n PL7 Versions 4.5 SP5 and earlier,\n SFT2841 Versions 14, 13.1 and earlier, and\n OPC Factory Server Versions 3.50 and earlier.\n\nModbus Serial Driver versions that are affected:\n\n Windows XP 32 bit V1.10 IE v37,\n Windows Vista 32 bit V2.2 IE12,\n Windows 7 32 bit V2.2 IE12, and\n Windows 7 64 bit V3.2 IE12.\"",
"id": "CVE-2013-0662",
"lastModified": "2026-05-06T22:30:45.220",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2014-04-01T06:17:08.240",
"references": [
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Vendor Advisory"
],
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202013-070-01"
},
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Mitigation",
"Third Party Advisory",
"US Government Resource"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01"
},
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/66500"
},
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/45219/"
},
{
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/45220/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202013-070-01"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mitigation",
"Third Party Advisory",
"US Government Resource"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/66500"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/45219/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/45220/"
}
],
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-8GR4-665R-F443
Vulnerability from github – Published: 2022-05-13 01:04 – Updated: 2025-04-12 12:32
VLAI
Details
Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header.
{
"affected": [],
"aliases": [
"CVE-2013-0662"
],
"database_specific": {
"cwe_ids": [
"CWE-787"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2014-04-01T06:17:00Z",
"severity": "HIGH"
},
"details": "Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header.",
"id": "GHSA-8gr4-665r-f443",
"modified": "2025-04-12T12:32:01Z",
"published": "2022-05-13T01:04:04Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0662"
},
{
"type": "WEB",
"url": "https://www.exploit-db.com/exploits/45219"
},
{
"type": "WEB",
"url": "https://www.exploit-db.com/exploits/45220"
},
{
"type": "WEB",
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202013-070-01"
},
{
"type": "WEB",
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/66500"
}
],
"schema_version": "1.4.0",
"severity": []
}
GSD-2013-0662
Vulnerability from gsd - Updated: 2023-12-13 01:22Details
Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2013-0662",
"description": "Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header.",
"id": "GSD-2013-0662",
"references": [
"https://packetstormsecurity.com/files/cve/CVE-2013-0662"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2013-0662"
],
"details": "Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header.",
"id": "GSD-2013-0662",
"modified": "2023-12-13T01:22:14.702666Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2013-0662",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202013-070-01",
"refsource": "CONFIRM",
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202013-070-01"
},
{
"name": "45219",
"refsource": "EXPLOIT-DB",
"url": "https://www.exploit-db.com/exploits/45219/"
},
{
"name": "http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01",
"refsource": "MISC",
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01"
},
{
"name": "66500",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/66500"
},
{
"name": "45220",
"refsource": "EXPLOIT-DB",
"url": "https://www.exploit-db.com/exploits/45220/"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:concept:*:sr7:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.6",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:modbus_serial_driver:1.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:modbus_serial_driver:2.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:modbus_serial_driver:3.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:modbuscommdtm_sl:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.1.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:opc_factory_server:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "3.5.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:opc_factory_server:3.34:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:opc_factory_server:3.35:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:pl7:*:sp7:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "4.5",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:powersuite:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.6",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:sft2841:13.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:sft2841:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "14.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:somachine:2.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:somachine:3.0:-:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:somachine:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "3.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:somove:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "1.7",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:twidosuite:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.31.04",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:unity_pro:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:unity_pro:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "7.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:unityloader:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.3",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:schneider_electric:somachine:3.0:*:*:*:xs:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "ics-cert@hq.dhs.gov",
"ID": "CVE-2013-0662"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01",
"refsource": "MISC",
"tags": [
"Mitigation",
"Third Party Advisory",
"US Government Resource"
],
"url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-086-01"
},
{
"name": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202013-070-01",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202013-070-01"
},
{
"name": "66500",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/66500"
},
{
"name": "45220",
"refsource": "EXPLOIT-DB",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/45220/"
},
{
"name": "45219",
"refsource": "EXPLOIT-DB",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/45219/"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2022-02-03T13:57Z",
"publishedDate": "2014-04-01T06:17Z"
}
}
}
ICSA-14-086-01A
Vulnerability from csaf_cisa - Published: 2014-12-28 07:00 - Updated: 2025-06-25 22:09Summary
Schneider Electric Serial Modbus Driver Buffer Overflow (Update A)
Notes
Legal Notice: All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
CISA Disclaimer: This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov
Recommended Practices: CISA recommends users take defensive measures to minimize the risk of exploitation.
Recommended Practices: Minimize network exposure for all control system devices and/or systems, ensuring they are not accessible from the internet.
Recommended Practices: Locate control system networks and remote devices behind firewalls and isolating them from business networks.
Recommended Practices: When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs). Recognize VPNs may have vulnerabilities, should be updated to the most recent version available, and are only as secure as the connected devices.
Recommended Practices: CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices: CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices: CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.
Recommended Practices: Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Recommended Practices: Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.
Recommended Practices: CISA also recommends users take the following measures to protect themselves from social engineering attacks: Do not click web links or open attachments in unsolicited email messages. Refer to Recognizing and Avoiding Email Scams for more information on avoiding email scams. Refer to Avoiding Social Engineering and Phishing Attacks for more information on social engineering attacks.
9.3 ()
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Schneider Electric TwidoSuite: <=2.31.04
Schneider Electric / TwidoSuite
|
<=2.31.04 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
|
|
Schneider Electric PowerSuite: <=2.6
Schneider Electric / PowerSuite
|
<=2.6 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
|
|
Schneider Electric SoMove: <=1.7
Schneider Electric / SoMove
|
<=1.7 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
|
|
Schneider Electric SoMachine: 2.0|3.0|3.1|3.0
Schneider Electric / SoMachine
|
2.0|3.0|3.1|3.0 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
|
|
Schneider Electric Unity Pro: <=7.0
Schneider Electric / Unity Pro
|
<=7.0 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
|
|
Schneider Electric UnityLoader: <=2.3
Schneider Electric / UnityLoader
|
<=2.3 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
|
|
Schneider Electric Concept: <=2.6_SR7
Schneider Electric / Concept
|
<=2.6_SR7 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
|
|
Schneider Electric ModbusCommDTM sl: <=2.1.2
Schneider Electric / ModbusCommDTM sl
|
<=2.1.2 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
|
|
Schneider Electric PL7: <=4.5_SP5
Schneider Electric / PL7
|
<=4.5_SP5 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
|
|
Schneider Electric SFT2841: 14
Schneider Electric / SFT2841
|
14 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
|
|
Schneider Electric SFT2841: <=13.1
Schneider Electric / SFT2841
|
<=13.1 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
|
|
Schneider Electric OPC Factory Server (OFS): <=3.40
Schneider Electric / OPC Factory Server (OFS)
|
<=3.40 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
|
|
Schneider Electric Modbus Serial Driver Windows XP 32 bit: V1.10_IE_v37
Schneider Electric / Modbus Serial Driver Windows XP 32 bit
|
V1.10_IE_v37 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
|
|
Schneider Electric Modbus Serial Driver Windows Vista 32 bit: V2.2_IE12
Schneider Electric / Modbus Serial Driver Windows Vista 32 bit
|
V2.2_IE12 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
|
|
Schneider Electric Modbus Serial Driver Windows 7 32 bit: V2.2_IE12
Schneider Electric / Modbus Serial Driver Windows 7 32 bit
|
V2.2_IE12 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
|
|
Schneider Electric Modbus Serial Driver Windows 7 64 bit: V3.2_IE12
Schneider Electric / Modbus Serial Driver Windows 7 64 bit
|
V3.2_IE12 |
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
|
References
10 references
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "general",
"text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
"title": "CISA Disclaimer"
},
{
"category": "general",
"text": "CISA recommends users take defensive measures to minimize the risk of exploitation.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Minimize network exposure for all control system devices and/or systems, ensuring they are not accessible from the internet.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Locate control system networks and remote devices behind firewalls and isolating them from business networks.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs). Recognize VPNs may have vulnerabilities, should be updated to the most recent version available, and are only as secure as the connected devices.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also recommends users take the following measures to protect themselves from social engineering attacks: Do not click web links or open attachments in unsolicited email messages. Refer to Recognizing and Avoiding Email Scams for more information on avoiding email scams. Refer to Avoiding Social Engineering and Phishing Attacks for more information on social engineering attacks.",
"title": "Recommended Practices"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "central@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "ICS Advisory ICSA-14-086-01A JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2014/icsa-14-086-01a.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-14-086-01A - Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-14-086-01a"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/topics/industrial-control-systems"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/sites/default/files/publications/emailscams0905.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ncas/tips/ST04-014"
}
],
"title": "Schneider Electric Serial Modbus Driver Buffer Overflow (Update A)",
"tracking": {
"current_release_date": "2025-06-25T22:09:32.885385Z",
"generator": {
"date": "2025-06-25T22:09:32.885356Z",
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-14-086-01A",
"initial_release_date": "2014-12-28T07:00:00.000000Z",
"revision_history": [
{
"date": "2014-12-28T07:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "Initial Publication"
},
{
"date": "2025-06-25T22:09:32.885385Z",
"legacy_version": "CSAF Conversion",
"number": "2",
"summary": "Advisory converted into a CSAF"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=2.31.04",
"product": {
"name": "Schneider Electric TwidoSuite: \u003c=2.31.04",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "TwidoSuite"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=2.6",
"product": {
"name": "Schneider Electric PowerSuite: \u003c=2.6",
"product_id": "CSAFPID-0002"
}
}
],
"category": "product_name",
"name": "PowerSuite"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=1.7",
"product": {
"name": "Schneider Electric SoMove: \u003c=1.7",
"product_id": "CSAFPID-0003"
}
}
],
"category": "product_name",
"name": "SoMove"
},
{
"branches": [
{
"category": "product_version_range",
"name": "2.0|3.0|3.1|3.0",
"product": {
"name": "Schneider Electric SoMachine: 2.0|3.0|3.1|3.0",
"product_id": "CSAFPID-0004"
}
}
],
"category": "product_name",
"name": "SoMachine"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=7.0",
"product": {
"name": "Schneider Electric Unity Pro: \u003c=7.0",
"product_id": "CSAFPID-0005"
}
}
],
"category": "product_name",
"name": "Unity Pro"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=2.3",
"product": {
"name": "Schneider Electric UnityLoader: \u003c=2.3",
"product_id": "CSAFPID-0006"
}
}
],
"category": "product_name",
"name": "UnityLoader"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=2.6_SR7",
"product": {
"name": "Schneider Electric Concept: \u003c=2.6_SR7",
"product_id": "CSAFPID-0007"
}
}
],
"category": "product_name",
"name": "Concept"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=2.1.2",
"product": {
"name": "Schneider Electric ModbusCommDTM sl: \u003c=2.1.2",
"product_id": "CSAFPID-0008"
}
}
],
"category": "product_name",
"name": "ModbusCommDTM sl"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=4.5_SP5",
"product": {
"name": "Schneider Electric PL7: \u003c=4.5_SP5",
"product_id": "CSAFPID-0009"
}
}
],
"category": "product_name",
"name": "PL7"
},
{
"branches": [
{
"category": "product_version",
"name": "14",
"product": {
"name": "Schneider Electric SFT2841: 14",
"product_id": "CSAFPID-0010"
}
}
],
"category": "product_name",
"name": "SFT2841"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=13.1",
"product": {
"name": "Schneider Electric SFT2841: \u003c=13.1",
"product_id": "CSAFPID-0011"
}
}
],
"category": "product_name",
"name": "SFT2841"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=3.40",
"product": {
"name": "Schneider Electric OPC Factory Server (OFS): \u003c=3.40",
"product_id": "CSAFPID-0012"
}
}
],
"category": "product_name",
"name": "OPC Factory Server (OFS)"
},
{
"branches": [
{
"category": "product_version",
"name": "V1.10_IE_v37",
"product": {
"name": "Schneider Electric Modbus Serial Driver Windows XP 32 bit: V1.10_IE_v37",
"product_id": "CSAFPID-0013"
}
}
],
"category": "product_name",
"name": "Modbus Serial Driver Windows XP 32 bit"
},
{
"branches": [
{
"category": "product_version",
"name": "V2.2_IE12",
"product": {
"name": "Schneider Electric Modbus Serial Driver Windows Vista 32 bit: V2.2_IE12",
"product_id": "CSAFPID-0014"
}
}
],
"category": "product_name",
"name": "Modbus Serial Driver Windows Vista 32 bit"
},
{
"branches": [
{
"category": "product_version",
"name": "V2.2_IE12",
"product": {
"name": "Schneider Electric Modbus Serial Driver Windows 7 32 bit: V2.2_IE12",
"product_id": "CSAFPID-0015"
}
}
],
"category": "product_name",
"name": "Modbus Serial Driver Windows 7 32 bit"
},
{
"branches": [
{
"category": "product_version",
"name": "V3.2_IE12",
"product": {
"name": "Schneider Electric Modbus Serial Driver Windows 7 64 bit: V3.2_IE12",
"product_id": "CSAFPID-0016"
}
}
],
"category": "product_name",
"name": "Modbus Serial Driver Windows 7 64 bit"
}
],
"category": "vendor",
"name": "Schneider Electric"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2013-0662",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "summary",
"text": "Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric has released a security notification with further information on this vulnerability and how to mitigate it: (http://download.schneider-electric.com/files?p_Doc_Ref=SEVD 2013-070-01).",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016"
]
},
{
"category": "mitigation",
"details": "Schneider Electric recommends that products that use this driver be updated with the latest version of software.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016"
]
},
{
"category": "mitigation",
"details": "New versions of OFS V3.5 and Unity Pro V8 include the updated ModbusDriverSuite.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016"
]
},
{
"category": "mitigation",
"details": "For the other products listed above, the updated ModbusDriverSuite will be implemented with each new version of those software products. Asset owners concerned about the Modbus Serial Driver used for those applications, please contact Schneider Electric Technical Support at: (http://www2.schneider-electric.com/sites/corporate/en/products-services/services/field-services/services-by-business-activity/automation/lifecycle/technical-support.page).",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016"
],
"url": "http://www2.schneider-electric.com/sites/corporate/en/products-services/services/field-services/services-by-business-activity/automation/lifecycle/technical-support.page"
},
{
"category": "mitigation",
"details": "Until this software can be updated in the vulnerable devices, Schneider Electric recommends a defense-in-depth strategy, which includes locating the PLCs and devices running the vulnerable software behind firewalls configured to limit access to authorized personnel and protocols.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016"
]
}
],
"scores": [
{
"cvss_v2": {
"baseScore": 9.3,
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016"
]
}
]
}
]
}
tid-202
Vulnerability from emb3d
Type
Description
Devices may have vulnerabilities within software used to parse various network protocols. If the device does not properly parse a protocol, a threat actor can send improperly formatted messages to the device, which may result in memory corruptions. Vulnerabilities resulting from protocol manipulation can then be used to perform remote code execution or to perform a denial-of-service attack on the device. There are a number of known complexities with network protocol parsing, including unclear protocol specifications or parsing expectation.
CWE
- CWE-20: Improper Input Validation (Class)
- CWE-121: Stack-based Buffer Overflow (Simple)
VAR-201404-0081
Vulnerability from variot - Updated: 2025-04-13 23:27Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header. Schneider Electric provides total solutions for the energy and infrastructure, industrial, data center and network, building and residential markets in more than 100 countries. The Modbus Serial driver used by many Schneider Electric products monitors the TCP 27700 port. Successful exploitation of vulnerabilities can execute arbitrary code in the context of an application. Multiple Schneider Electric Products are prone to a remote buffer-overflow vulnerability because it fails to properly validate user-supplied input. Failed exploit attempts will result in a denial-of-service condition. The following products are vulnerable: TwidoSuite 2.31.04 and prior PowerSuite 2.6 and prior SoMove 1.7 and prior SoMachine 2.0, 3.0, 3.1, and 3.0 XS Unity Pro 7.0 and prior UnityLoader 2.3 and prior Concept 2.6 SR7 and prior ModbusCommDTM sl 2.1.2 and prior PL7 4.5 SP5 and prior SFT2841 14, 13.1 and prior OPC Factory Server 3.50 and prior
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201404-0081",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "somachine",
"scope": "eq",
"trust": 2.8,
"vendor": "schneider electric",
"version": "3.0"
},
{
"model": "modbuscommdtm sl",
"scope": "lte",
"trust": 1.8,
"vendor": "schneider electric",
"version": "2.1.2"
},
{
"model": "powersuite",
"scope": "lte",
"trust": 1.8,
"vendor": "schneider electric",
"version": "2.6"
},
{
"model": "somachine",
"scope": "eq",
"trust": 1.8,
"vendor": "schneider electric",
"version": "2.0"
},
{
"model": "somove",
"scope": "lte",
"trust": 1.8,
"vendor": "schneider electric",
"version": "1.7"
},
{
"model": "twidosuite",
"scope": "lte",
"trust": 1.8,
"vendor": "schneider electric",
"version": "2.31.04"
},
{
"model": "unity pro",
"scope": "lte",
"trust": 1.8,
"vendor": "schneider electric",
"version": "7.0"
},
{
"model": "sft2841",
"scope": "eq",
"trust": 1.6,
"vendor": "schneider electric",
"version": "13.1"
},
{
"model": "modbus serial driver",
"scope": "eq",
"trust": 1.6,
"vendor": "schneider electric",
"version": "2.2"
},
{
"model": "opc factory server",
"scope": "eq",
"trust": 1.6,
"vendor": "schneider electric",
"version": "3.35"
},
{
"model": "modbus serial driver",
"scope": "eq",
"trust": 1.6,
"vendor": "schneider electric",
"version": "1.10"
},
{
"model": "modbus serial driver",
"scope": "eq",
"trust": 1.6,
"vendor": "schneider electric",
"version": "3.2"
},
{
"model": "opc factory server",
"scope": "eq",
"trust": 1.6,
"vendor": "schneider electric",
"version": "3.34"
},
{
"model": "concept",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "2.6"
},
{
"model": "sft2841",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "14.0"
},
{
"model": "opc factory server",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "3.5.0"
},
{
"model": "unity pro",
"scope": "eq",
"trust": 1.0,
"vendor": "schneider electric",
"version": "6.0"
},
{
"model": "somachine",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "3.1"
},
{
"model": "pl7",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "4.5"
},
{
"model": "unityloader",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "2.3"
},
{
"model": "concept",
"scope": "lte",
"trust": 0.8,
"vendor": "schneider electric",
"version": "2.6 sr7"
},
{
"model": "modbus serial driver",
"scope": "eq",
"trust": 0.8,
"vendor": "schneider electric",
"version": "1.10 to 3.2"
},
{
"model": "opc factory server",
"scope": "lte",
"trust": 0.8,
"vendor": "schneider electric",
"version": "3.40"
},
{
"model": "pl7",
"scope": "lte",
"trust": 0.8,
"vendor": "schneider electric",
"version": "4.5 sp5"
},
{
"model": "sft2841",
"scope": "lte",
"trust": 0.8,
"vendor": "schneider electric",
"version": "13.1"
},
{
"model": "sft2841",
"scope": "eq",
"trust": 0.8,
"vendor": "schneider electric",
"version": "14"
},
{
"model": "somachine",
"scope": "eq",
"trust": 0.8,
"vendor": "schneider electric",
"version": "3.0 xs"
},
{
"model": "somachine",
"scope": "eq",
"trust": 0.8,
"vendor": "schneider electric",
"version": "3.1"
},
{
"model": "unity loader",
"scope": "lte",
"trust": 0.8,
"vendor": "schneider electric",
"version": "2.3"
},
{
"model": "electric opc factory server",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider",
"version": "3.5"
},
{
"model": "electric tlxcdsuofs33",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider",
"version": "3.5"
},
{
"model": "electric tlxcdstofs33",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider",
"version": "3.5"
},
{
"model": "electric tlxcdluofs33",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider",
"version": "3.5"
},
{
"model": "electric tlxcdlfofs33",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider",
"version": "3.5"
},
{
"model": "opc factory server",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider electric",
"version": "3.5.0"
},
{
"model": "modbuscommdtm sl",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider electric",
"version": "2.1.2"
},
{
"model": "sft2841",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider electric",
"version": "14.0"
},
{
"model": "pl7",
"scope": "eq",
"trust": 0.6,
"vendor": "schneider electric",
"version": "4.5"
},
{
"model": null,
"scope": "eq",
"trust": 0.4,
"vendor": "somachine",
"version": "3.0"
},
{
"model": "electric unity pro",
"scope": "eq",
"trust": 0.3,
"vendor": "schneider",
"version": "6.0"
},
{
"model": "electric unity pro",
"scope": "eq",
"trust": 0.3,
"vendor": "schneider",
"version": "6"
},
{
"model": "electric opc factory server",
"scope": "eq",
"trust": 0.3,
"vendor": "schneider",
"version": "3.34"
},
{
"model": "electric opc factory driver",
"scope": "eq",
"trust": 0.3,
"vendor": "schneider",
"version": "3.34"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "concept",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "modbus serial driver",
"version": "1.10"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "modbus serial driver",
"version": "2.2"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "modbus serial driver",
"version": "3.2"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "modbuscommdtm sl",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "opc factory server",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "opc factory server",
"version": "3.34"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "opc factory server",
"version": "3.35"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "pl7",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "powersuite",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "sft2841",
"version": "13.1"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "sft2841",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "somachine",
"version": "2.0"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "somachine",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "somove",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "twidosuite",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "unity pro",
"version": "6.0"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "unity pro",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "unityloader",
"version": "*"
}
],
"sources": [
{
"db": "IVD",
"id": "1cbd5cbc-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2014-02043"
},
{
"db": "BID",
"id": "66500"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006276"
},
{
"db": "CNNVD",
"id": "CNNVD-201404-005"
},
{
"db": "NVD",
"id": "CVE-2013-0662"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:schneider_electric:concept",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:schneider_electric:modbus_serial_driver",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:schneider_electric:modbuscommdtm_sl",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:schneider_electric:opc_factory_server",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:schneider_electric:pl7",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:schneider_electric:powersuite",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:schneider_electric:sft2841",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:schneider_electric:somachine",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:schneider_electric:somove",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:schneider_electric:twidosuite",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:schneider_electric:unityloader",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:schneider_electric:unity_pro",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2013-006276"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "This issue is reported by vendor.",
"sources": [
{
"db": "BID",
"id": "66500"
}
],
"trust": 0.3
},
"cve": "CVE-2013-0662",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 8.6,
"id": "CVE-2013-0662",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 1.8,
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 8.6,
"id": "CNVD-2014-02043",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 8.6,
"id": "1cbd5cbc-2352-11e6-abef-000c29c66e3d",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.2,
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 8.6,
"id": "VHN-60664",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:M/AU:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2013-0662",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2013-0662",
"trust": 0.8,
"value": "High"
},
{
"author": "CNVD",
"id": "CNVD-2014-02043",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201404-005",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "IVD",
"id": "1cbd5cbc-2352-11e6-abef-000c29c66e3d",
"trust": 0.2,
"value": "CRITICAL"
},
{
"author": "VULHUB",
"id": "VHN-60664",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "1cbd5cbc-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2014-02043"
},
{
"db": "VULHUB",
"id": "VHN-60664"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006276"
},
{
"db": "CNNVD",
"id": "CNNVD-201404-005"
},
{
"db": "NVD",
"id": "CVE-2013-0662"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Multiple stack-based buffer overflows in ModbusDrv.exe in Schneider Electric Modbus Serial Driver 1.10 through 3.2 allow remote attackers to execute arbitrary code via a large buffer-size value in a Modbus Application Header. Schneider Electric provides total solutions for the energy and infrastructure, industrial, data center and network, building and residential markets in more than 100 countries. The Modbus Serial driver used by many Schneider Electric products monitors the TCP 27700 port. Successful exploitation of vulnerabilities can execute arbitrary code in the context of an application. Multiple Schneider Electric Products are prone to a remote buffer-overflow vulnerability because it fails to properly validate user-supplied input. Failed exploit attempts will result in a denial-of-service condition. \nThe following products are vulnerable:\nTwidoSuite 2.31.04 and prior\nPowerSuite 2.6 and prior\nSoMove 1.7 and prior\nSoMachine 2.0, 3.0, 3.1, and 3.0 XS\nUnity Pro 7.0 and prior\nUnityLoader 2.3 and prior\nConcept 2.6 SR7 and prior\nModbusCommDTM sl 2.1.2 and prior\nPL7 4.5 SP5 and prior\nSFT2841 14, 13.1 and prior\nOPC Factory Server 3.50 and prior",
"sources": [
{
"db": "NVD",
"id": "CVE-2013-0662"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006276"
},
{
"db": "CNVD",
"id": "CNVD-2014-02043"
},
{
"db": "BID",
"id": "66500"
},
{
"db": "IVD",
"id": "1cbd5cbc-2352-11e6-abef-000c29c66e3d"
},
{
"db": "VULHUB",
"id": "VHN-60664"
}
],
"trust": 2.7
},
"exploit_availability": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"reference": "https://www.scap.org.cn/vuln/vhn-60664",
"trust": 0.1,
"type": "unknown"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-60664"
}
]
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2013-0662",
"trust": 3.6
},
{
"db": "ICS CERT",
"id": "ICSA-14-086-01",
"trust": 3.1
},
{
"db": "BID",
"id": "66500",
"trust": 2.6
},
{
"db": "EXPLOIT-DB",
"id": "45219",
"trust": 1.7
},
{
"db": "EXPLOIT-DB",
"id": "45220",
"trust": 1.7
},
{
"db": "CNNVD",
"id": "CNNVD-201404-005",
"trust": 0.9
},
{
"db": "CNVD",
"id": "CNVD-2014-02043",
"trust": 0.8
},
{
"db": "ICS CERT",
"id": "ICSA-14-086-01A",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006276",
"trust": 0.8
},
{
"db": "OSVDB",
"id": "105035",
"trust": 0.6
},
{
"db": "IVD",
"id": "1CBD5CBC-2352-11E6-ABEF-000C29C66E3D",
"trust": 0.2
},
{
"db": "PACKETSTORM",
"id": "149000",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "148995",
"trust": 0.1
},
{
"db": "VULHUB",
"id": "VHN-60664",
"trust": 0.1
}
],
"sources": [
{
"db": "IVD",
"id": "1cbd5cbc-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2014-02043"
},
{
"db": "VULHUB",
"id": "VHN-60664"
},
{
"db": "BID",
"id": "66500"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006276"
},
{
"db": "CNNVD",
"id": "CNNVD-201404-005"
},
{
"db": "NVD",
"id": "CVE-2013-0662"
}
]
},
"id": "VAR-201404-0081",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "1cbd5cbc-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2014-02043"
},
{
"db": "VULHUB",
"id": "VHN-60664"
}
],
"trust": 1.7371212090909092
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.8
}
],
"sources": [
{
"db": "IVD",
"id": "1cbd5cbc-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2014-02043"
}
]
},
"last_update_date": "2025-04-13T23:27:42.289000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "SEVD 2013-070-01",
"trust": 0.8,
"url": "http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202013-070-01"
},
{
"title": "Patch for Schneider Electric heap buffer overflow vulnerability",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/44568"
},
{
"title": "Schneider Electric Modbus Serial Driver Repair measures for stack-based buffer error vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=160424"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2014-02043"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006276"
},
{
"db": "CNNVD",
"id": "CNNVD-201404-005"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-787",
"trust": 1.0
},
{
"problemtype": "CWE-119",
"trust": 0.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-60664"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006276"
},
{
"db": "NVD",
"id": "CVE-2013-0662"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.1,
"url": "http://ics-cert.us-cert.gov/advisories/icsa-14-086-01"
},
{
"trust": 1.7,
"url": "http://www.securityfocus.com/bid/66500"
},
{
"trust": 1.7,
"url": "http://download.schneider-electric.com/files?p_doc_ref=sevd%202013-070-01"
},
{
"trust": 1.7,
"url": "https://www.exploit-db.com/exploits/45219/"
},
{
"trust": 1.7,
"url": "https://www.exploit-db.com/exploits/45220/"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-0662"
},
{
"trust": 0.8,
"url": "http://ics-cert.us-cert.gov/advisories/icsa-14-086-01a"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-0662"
},
{
"trust": 0.6,
"url": "http://osvdb.com/show/osvdb/105035"
},
{
"trust": 0.3,
"url": "http://www.schneider-electric.com/site/home/index.cfm/ww/?selectcountry=true"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2014-02043"
},
{
"db": "VULHUB",
"id": "VHN-60664"
},
{
"db": "BID",
"id": "66500"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006276"
},
{
"db": "CNNVD",
"id": "CNNVD-201404-005"
},
{
"db": "NVD",
"id": "CVE-2013-0662"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "1cbd5cbc-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2014-02043"
},
{
"db": "VULHUB",
"id": "VHN-60664"
},
{
"db": "BID",
"id": "66500"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006276"
},
{
"db": "CNNVD",
"id": "CNNVD-201404-005"
},
{
"db": "NVD",
"id": "CVE-2013-0662"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2014-04-01T00:00:00",
"db": "IVD",
"id": "1cbd5cbc-2352-11e6-abef-000c29c66e3d"
},
{
"date": "2014-04-01T00:00:00",
"db": "CNVD",
"id": "CNVD-2014-02043"
},
{
"date": "2014-04-01T00:00:00",
"db": "VULHUB",
"id": "VHN-60664"
},
{
"date": "2014-03-27T00:00:00",
"db": "BID",
"id": "66500"
},
{
"date": "2014-04-02T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2013-006276"
},
{
"date": "2014-04-02T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201404-005"
},
{
"date": "2014-04-01T06:17:08.240000",
"db": "NVD",
"id": "CVE-2013-0662"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2014-04-01T00:00:00",
"db": "CNVD",
"id": "CNVD-2014-02043"
},
{
"date": "2018-08-22T00:00:00",
"db": "VULHUB",
"id": "VHN-60664"
},
{
"date": "2015-03-19T09:42:00",
"db": "BID",
"id": "66500"
},
{
"date": "2014-04-02T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2013-006276"
},
{
"date": "2022-02-07T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201404-005"
},
{
"date": "2025-04-12T10:46:40.837000",
"db": "NVD",
"id": "CVE-2013-0662"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201404-005"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Schneider Electric Heap Buffer Overflow Vulnerability",
"sources": [
{
"db": "IVD",
"id": "1cbd5cbc-2352-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2014-02043"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "buffer error",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201404-005"
}
],
"trust": 0.6
}
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…