CVE-2014-0762

high

Description

The CG Automation Software DNP3 driver, used in the ePAQ-9410 Substation Gateway products, does not validate input correctly. An attacker could cause the software to go into an infinite loop, causing the process to crash. The system must be restarted manually to clear the condition.

References

https://www.cisa.gov/news-events/ics-advisories/icsa-14-238-01

https://ics-cert.us-cert.gov/advisories/ICSA-14-238-01

http://mail.cgautomationusa.com/login.aspx

Details

Source: Mitre, NVD

Published: 2014-08-28

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 4.7

Vector: CVSS2#AV:L/AC:M/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High

EPSS

EPSS: 0.00052