{"containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "SCADA Data Gateway", "vendor": "Triangle MicroWorks", "versions": [{"lessThan": "v3.00.0635", "status": "affected", "version": "0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Adam Crain of Automatak and Chris Sistrunk of Mandiant"}], "datePublic": "2014-05-29T06:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>\nTriangle MicroWorks SCADA Data Gateway before 3.00.0635 allows physically proximate attackers to cause a denial of service (excessive data processing) via a crafted DNP request over a serial line.\n\n</p>"}], "value": "Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows physically proximate attackers to cause a denial of service (excessive data processing) via a crafted DNP request over a serial line."}], "metrics": [{"cvssV2_0": {"accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 1.2, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:P", "version": "2.0"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-400", "description": "CWE-400", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert", "dateUpdated": "2025-10-02T22:19:28.957Z"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://www.trianglemicroworks.com/products/scada-data-gateway/what%27s-new"}, {"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-14-149-01"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>Triangle MicroWorks has produced an update and release notes describing the mitigation. Please contact Triangle MicroWorks Support for details on specific platform updates here:</p><p><a target=\"_blank\" rel=\"nofollow\" href=\"http://www.trianglemicroworks.com/SupportPage.htm\">http://www.trianglemicroworks.com/SupportPage.htm</a></p><p>Release notes are found here:</p><p><a target=\"_blank\" rel=\"nofollow\" href=\"http://www.trianglemicroworks.com/products/scada-data-gateway/what%27s-new\">http://www.trianglemicroworks.com/products/scada-data-gateway/what%27s-new</a></p><p>Triangle MicroWorks recommends following the International Electrotechnical Commission (IEC) Technical Specification TS 62351 to reduce the risk from vulnerability. More information on recommended implementation practices for Triangle MicroWorks products is available by contacting your product representative.</p>\n\n<br>"}], "value": "Triangle MicroWorks has produced an update and release notes describing the mitigation. Please contact Triangle MicroWorks Support for details on specific platform updates here:\n\n http://www.trianglemicroworks.com/SupportPage.htm \n\nRelease notes are found here:\n\n http://www.trianglemicroworks.com/products/scada-data-gateway/what%27s-new \n\nTriangle MicroWorks recommends following the International Electrotechnical Commission (IEC) Technical Specification TS 62351 to reduce the risk from vulnerability. More information on recommended implementation practices for Triangle MicroWorks products is available by contacting your product representative."}], "source": {"advisory": "ICSA-14-149-01", "discovery": "EXTERNAL"}, "title": "Triangle MicroWorks SCADA Data Gateway Resource Exhaustion", "x_generator": {"engine": "Vulnogram 0.2.0"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "ics-cert@hq.dhs.gov", "ID": "CVE-2014-2342", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows remote attackers to cause a denial of service (excessive data processing) via a crafted DNP3 packet."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.trianglemicroworks.com/products/scada-data-gateway/what%27s-new", "refsource": "MISC", "url": "http://www.trianglemicroworks.com/products/scada-data-gateway/what%27s-new"}, {"name": "http://ics-cert.us-cert.gov/advisories/ICSA-14-149-01", "refsource": "MISC", "url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-149-01"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T10:14:25.054Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.trianglemicroworks.com/products/scada-data-gateway/what%27s-new"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-149-01"}]}]}, "cveMetadata": {"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "assignerShortName": "icscert", "cveId": "CVE-2014-2343", "datePublished": "2014-05-30T23:00:00", "dateReserved": "2014-03-13T00:00:00", "dateUpdated": "2025-10-02T22:19:28.957Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:*:*:*:*:*:*:*:*", "matchCriteriaId": "A505671F-8C57-47A2-89D4-DC6186F5D7DA", "versionEndIncluding": "3.00.0633", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.50:*:*:*:*:*:*:*", "matchCriteriaId": "D2626C47-B68A-4A21-B5A2-9D64A28A7120", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.50.0309:*:*:*:*:*:*:*", "matchCriteriaId": "69D2B52D-B324-4115-A3BB-51E3BF97758B", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.51:*:*:*:*:*:*:*", "matchCriteriaId": "9406C4EC-5758-458D-8354-6736CA78A660", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.53:*:*:*:*:*:*:*", "matchCriteriaId": "EB915370-216E-40DC-AEF5-634230394E00", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0515:*:*:*:*:*:*:*", "matchCriteriaId": "22E5498C-D5F0-43F7-A536-AB65B4DEB49F", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0516:*:*:*:*:*:*:*", "matchCriteriaId": "2099DFC5-F241-4C47-9A17-FE40101A4570", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0517:*:*:*:*:*:*:*", "matchCriteriaId": "F1E898A9-7F0E-453C-8509-75E7E1290382", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0518:*:*:*:*:*:*:*", "matchCriteriaId": "E513983A-C6A2-4E07-874B-880F7A013D53", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0528:*:*:*:*:*:*:*", "matchCriteriaId": "D6861F70-5798-4B41-BE94-BECCF16752BB", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0529:*:*:*:*:*:*:*", "matchCriteriaId": "1B5722CA-130A-46B3-9A30-9661069890AF", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0536:*:*:*:*:*:*:*", "matchCriteriaId": "F5E625A4-30E4-4D5B-81B2-B0B0569948DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0540:*:*:*:*:*:*:*", "matchCriteriaId": "5A6D03B5-2E8C-49E9-8A18-F367F72A4D50", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0544:*:*:*:*:*:*:*", "matchCriteriaId": "AF59F8E0-C4BA-4658-9B91-BACD59B9C482", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0545:*:*:*:*:*:*:*", "matchCriteriaId": "BD36BB8A-C840-494B-835C-98EB0075CA62", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0552:*:*:*:*:*:*:*", "matchCriteriaId": "8FDB5301-887B-4950-A918-113B75D2BDE5", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0553:*:*:*:*:*:*:*", "matchCriteriaId": "76BF9332-5F3E-4230-A742-2019B2DCEB22", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0558:*:*:*:*:*:*:*", "matchCriteriaId": "1610F5AE-3BB1-4BDB-8C88-A2B83DBE39C1", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0561:*:*:*:*:*:*:*", "matchCriteriaId": "1E2A4B7A-D8DA-4A1E-8506-A2D377E7568D", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0562:*:*:*:*:*:*:*", "matchCriteriaId": "90EA0A71-B4C7-4F54-A439-4B0FA9637410", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0564:*:*:*:*:*:*:*", "matchCriteriaId": "71B02213-096E-4CA2-8528-64E83EA06D27", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0565:*:*:*:*:*:*:*", "matchCriteriaId": "8EA1B917-A27E-4043-BD74-534B13916F3B", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0566:*:*:*:*:*:*:*", "matchCriteriaId": "378C61EE-9420-42D3-9DA2-71F2D459ACE9", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0567:*:*:*:*:*:*:*", "matchCriteriaId": "CA21BE3B-6C2E-4479-A9A0-E3966741B832", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0569:*:*:*:*:*:*:*", "matchCriteriaId": "49C97936-8AF3-41D8-8D6B-F6C9C5F4B002", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0570:*:*:*:*:*:*:*", "matchCriteriaId": "D3175298-E0A4-4571-BDCC-FDA81675BC67", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0571:*:*:*:*:*:*:*", "matchCriteriaId": "18BF8DF0-93D1-4ACA-BA78-B6DE0080AD52", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0572:*:*:*:*:*:*:*", "matchCriteriaId": "E1D5F9B2-38C5-45AC-9A33-80E61BAF0E17", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0573:*:*:*:*:*:*:*", "matchCriteriaId": "00666362-AD62-4942-96E8-C08BF087E34F", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0574:*:*:*:*:*:*:*", "matchCriteriaId": "5BC82C89-7D15-452D-8610-23F3952487E9", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0575:*:*:*:*:*:*:*", "matchCriteriaId": "3D15DD91-4F01-4B95-8F9A-C4848800BDBB", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0576:*:*:*:*:*:*:*", "matchCriteriaId": "9DF57506-CC34-473C-8165-CB26194E80BB", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0577:*:*:*:*:*:*:*", "matchCriteriaId": "CC480C77-1950-4C3A-B77E-D2C2AC59FE20", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0578:*:*:*:*:*:*:*", "matchCriteriaId": "2044B8C6-D0C6-4A1E-9798-19912FFAE097", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0579:*:*:*:*:*:*:*", "matchCriteriaId": "40D4B1C5-CE06-4082-9534-513BB99D7D7B", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0580:*:*:*:*:*:*:*", "matchCriteriaId": "15E62697-E6BD-4796-9470-F6E125CD3F4C", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0581:*:*:*:*:*:*:*", "matchCriteriaId": "299D658E-143A-4556-A6FF-37EDA07828CF", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0582:*:*:*:*:*:*:*", "matchCriteriaId": "7619010A-954E-4F5D-8DDB-0ED652E2A306", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0583:*:*:*:*:*:*:*", "matchCriteriaId": "C042A0EB-AB96-4FD2-A19E-4E9101C2C63C", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0584:*:*:*:*:*:*:*", "matchCriteriaId": "B8B7B997-4D7F-4A34-822A-3AF52A4FA715", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0586:*:*:*:*:*:*:*", "matchCriteriaId": "3E073D1B-4FBF-4DE2-AA5A-1EE8774D20FD", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0587:*:*:*:*:*:*:*", "matchCriteriaId": "2285B98B-3E80-4C5B-9D7D-DA7C250FBAD0", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0588:*:*:*:*:*:*:*", "matchCriteriaId": "0EC58901-067E-485B-9723-9F344F306C39", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0589:*:*:*:*:*:*:*", "matchCriteriaId": "E4583789-CC14-48BB-83B5-AF1B6896B10B", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0590:*:*:*:*:*:*:*", "matchCriteriaId": "7CEC3409-0CED-41A8-8718-B0EFCA85DA49", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0591:*:*:*:*:*:*:*", "matchCriteriaId": "B4AEB67C-7DAF-44D2-BB32-FD9E86D8EA0A", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0592:*:*:*:*:*:*:*", "matchCriteriaId": "383DA8F4-1DDD-43A9-8A53-721F5F449CA2", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0594:*:*:*:*:*:*:*", "matchCriteriaId": "1AD95D30-4502-44EB-9C0C-D9A45CD24E5C", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0595:*:*:*:*:*:*:*", "matchCriteriaId": "B9F60297-9FA4-47F6-98AF-B9662568D76F", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0596:*:*:*:*:*:*:*", "matchCriteriaId": "4E593FD2-7158-40D0-9F44-01C06BF96F06", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0597:*:*:*:*:*:*:*", "matchCriteriaId": "0D8A435F-8C6D-4584-8DB9-4A0C515F6D3B", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0598:*:*:*:*:*:*:*", "matchCriteriaId": "5F210B77-F989-4931-AFBF-CEC2A175FC27", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:2.54.0599:*:*:*:*:*:*:*", "matchCriteriaId": "36BBE6AE-BEE1-441B-A5A4-30BD7FCFBF3B", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:3.00:*:*:*:*:*:*:*", "matchCriteriaId": "F74C4546-500F-405C-B585-6F6C07065808", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:3.00.0612:*:*:*:*:*:*:*", "matchCriteriaId": "948521F4-CA30-4269-8A98-96F9AD004150", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:3.00.0615:*:*:*:*:*:*:*", "matchCriteriaId": "9D9853CB-38CC-419D-A9F8-EDDA2F6CE4F8", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:3.00.0616:*:*:*:*:*:*:*", "matchCriteriaId": "7C679459-44C7-454C-9894-87ABE1F710F2", "vulnerable": true}, {"criteria": "cpe:2.3:a:trianglemicroworks:scada_data_gateway:3.00.0630:*:*:*:*:*:*:*", "matchCriteriaId": "CD169173-9189-42BE-A741-955889E44FC9", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows physically proximate attackers to cause a denial of service (excessive data processing) via a crafted DNP request over a serial line."}, {"lang": "es", "value": "Triangle MicroWorks SCADA Data Gateway anterior a 3.00.0635 permite a atacantes f\u00edsicamente pr\u00f3ximos causar una denegaci\u00f3n de servicio (procesamiento de datos excesivo) a trav\u00e9s de una solicitud DNP manipulada sobre una l\u00ednea de serie."}], "id": "CVE-2014-2343", "lastModified": "2025-10-02T23:15:30.137", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 1.2, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 1.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "ics-cert@hq.dhs.gov", "type": "Secondary", "userInteractionRequired": false}, {"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-05-30T23:55:02.783", "references": [{"source": "ics-cert@hq.dhs.gov", "url": "http://www.trianglemicroworks.com/products/scada-data-gateway/what%27s-new"}, {"source": "ics-cert@hq.dhs.gov", "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-14-149-01"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-149-01"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.trianglemicroworks.com/products/scada-data-gateway/what%27s-new"}], "sourceIdentifier": "ics-cert@hq.dhs.gov", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-400"}], "source": "ics-cert@hq.dhs.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Secondary"}]}

{}