PT-2019-11102 · Triconex · Triconex Tristation Emulator

Published

2019-05-22

Updated

2020-08-24

CVE-2018-7803

CVSS v3.1

5.9

Medium

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Triconex TriStation Emulator version 1.2.0

Description: A vulnerability exists due to improper check for unusual or exceptional conditions, which could cause the emulator to crash when sending a specially crafted packet. The emulator is used infrequently for application logic testing and is susceptible to an attack only while running in off-line mode.

Recommendations: For Triconex TriStation Emulator version 1.2.0, consider disabling the emulator when not in use, especially when in off-line mode, to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Check for Exceptional Conditions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-754

Related Identifiers

CVE-2018-7803

Affected Products

Triconex Tristation Emulator

PT-2019-11102 · Triconex · Triconex Tristation Emulator

CVE-2018-7803

Weakness Enumeration

Related Identifiers

Affected Products

References · 3