CVE-2014-2379

Sensys Networks VSN240-F and VSN240-T sensors VDS before 2.10.1 and TrafficDOT before 2.10.3 do not use encryption, which allows remote attackers to interfere with traffic control by replaying transmissions on a wireless network.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:sensysnetworks:trafficdot:*:*:*:*:*:*:*:*
cpe:2.3:a:sensysnetworks:trafficdot:2.8.3:*:*:*:*:*:*:*
cpe:2.3:a:sensysnetworks:trafficdot:2.10.0:*:*:*:*:*:*:*
cpe:2.3:a:sensysnetworks:trafficdot:2.10.1:*:*:*:*:*:*:*
OR cpe:2.3:h:sensysnetworks:vsn240-f:-:*:*:*:*:*:*:*
cpe:2.3:h:sensysnetworks:vsn240-t:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:a:sensysnetworks:vds:*:*:*:*:*:*:*:*
cpe:2.3:a:sensysnetworks:vds:1.8.5:*:*:*:*:*:*:*
cpe:2.3:a:sensysnetworks:vds:1.8.7:*:*:*:*:*:*:*
cpe:2.3:a:sensysnetworks:vds:2.6.3:*:*:*:*:*:*:*
cpe:2.3:a:sensysnetworks:vds:2.6.4:*:*:*:*:*:*:*
OR cpe:2.3:h:sensysnetworks:vsn240-f:-:*:*:*:*:*:*:*
cpe:2.3:h:sensysnetworks:vsn240-t:-:*:*:*:*:*:*:*

History

13 Oct 2025, 23:15

Type Values Removed Values Added
References
  • () http://www.sensysnetworks.com/distributors/ -
  • () http://www.sensysnetworks.com/resources-by-category/#sw -
  • () https://www.cisa.gov/news-events/ics-advisories/icsa-14-247-01a -
CVSS v2 : 5.4
v3 : unknown
v2 : 4.3
v3 : unknown
CWE CWE-311

21 Nov 2024, 02:06

Type Values Removed Values Added
References () https://ics-cert.us-cert.gov/advisories/ICSA-14-247-01 - US Government Resource () https://ics-cert.us-cert.gov/advisories/ICSA-14-247-01 - US Government Resource

Information

Published : 2014-09-05 17:55

Updated : 2025-10-13 23:15


NVD link : CVE-2014-2379

Mitre link : CVE-2014-2379

CVE.ORG link : CVE-2014-2379


JSON object : View

Products Affected

sensysnetworks

  • vds
  • vsn240-f
  • trafficdot
  • vsn240-t
CWE
CWE-311

Missing Encryption of Sensitive Data

CWE-310

Cryptographic Issues