Schneider Electric Telvent Sage 2300 RTUs with firmware before C3413-500-S01, and LANDAC II-2, Sage 1410, Sage 1430, Sage 1450, Sage 2400, and Sage 3030M RTUs with firmware before C3414-500-S02J2, allow remote attackers to obtain sensitive information from device memory by reading a padding field of an Ethernet packet.
2016-03-12T02:59:00.113
2025-04-12T10:46:40.837
Deferred
CVSSv3.0: 5.3 (MEDIUM)
AV:N/AC:L/Au:N/C:P/I:N/A:N
10.0
2.9
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Operating System | schneider-electric | telvent_rtu_firmware | ≤ c3414-500-s02j1 | Yes |
Hardware | schneider-electric | sage_1410 | - | No |
Hardware | schneider-electric | sage_1430 | - | No |
Hardware | schneider-electric | sage_1450 | - | No |
Hardware | schneider-electric | sage_2400 | - | No |
Hardware | schneider-electric | sage_3030m | - | No |
Hardware | schneider-electric | sage_landac_ii-2 | - | No |
Hardware | schneider-electric | sage_2300 | - | No |
Operating System | schneider-electric | telvent_rtu_firmware | ≤ c3413-500-001d3 | Yes |