CVE-2013-2782
Schneider Electric Trio J-Series License Free Ethernet Radio 3.6.0-3.6.3 - Weak AES Encryption Key Reuse
Title source: llmDescription
Schneider Electric Trio J-Series License Free Ethernet Radio with firmware 3.6.0 through 3.6.3 uses the same AES encryption key across different customers' installations, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging knowledge of this key from another installation.
References (2)
Core 2
Core References
US Government Resource x_refsource_misc
http://ics-cert.us-cert.gov/advisories/ICSA-13-234-01
Vendor Advisory x_refsource_confirm
http://www.schneider-electric.com/download/ww/en/file/141141292-SEVD-2013-143-01.pdf
Scores
EPSS
0.0026
EPSS Percentile
49.3%
Details
CWE
CWE-310
Status
published
Products (12)
schneider-electric/tburjr900
00002dh0
schneider-electric/tburjr900
00002eh0
schneider-electric/tburjr900
01002dh0
schneider-electric/tburjr900
01002eh0
schneider-electric/tburjr900
05002dh0
schneider-electric/tburjr900
05002eh0
schneider-electric/tburjr900
06002dh0
schneider-electric/tburjr900
06002eh0
schneider-electric/tburjr900_firmware
3.6.0
schneider-electric/tburjr900_firmware
3.6.1
... and 2 more
Published
Aug 28, 2013
Tracked Since
Feb 18, 2026