ICSA-13-234-02
·
Published 2025-06-06
·
View on CISA ICS-CERT ↗
Top Server OPC Improper Input Validation Vulnerability
CVSS 7.1
HIGH
CVEs (1)
Remediations
- Software Toolbox has produced a new version of the software, Version 5.12.140.0, which resolves the vulnerability. This version was released June 18, 2013. Information and support about various versions are available at the Software Toolbox Top Server OPC I/O Server support site (registration required): (http://www.toolboxopc.com/html/v5_releasehistory.asp).
- The most current version of TOP Server available is Version 5.12.142.0 R2 (issued August 5, 2013): (http://www.toolboxopc.com/html/support.asp).
- The researchers suggest the following mitigations: Block DNP3 traffic from traversing onto business or corporate networks through the use of an IPS or firewall with DPN3-specific rule sets.
Affected Vendors
Software Toolbox
Affected Products (1)
Software Toolbox
·
DNP Master Driver for the TOP Server OPC Server
<=5.11.250.0
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more