CVE-2014-2378

CVE-2014-2378: Sensys Networks Traffic Sensor Download of Code Without Integrity Check

Vendor Sensys Networks
Product VSN240-F
Weakness CWE-494 · Download without integrity check
Published September 5, 2014
Last update October 13, 2025

CVSS base score

What the vulnerability does

01Description

Sensys Networks VSN240-F and VSN240-T sensors VDS before 2.10.1 and TrafficDOT before 2.10.3 do not verify the integrity of downloaded updates, which allows remote attackers to execute arbitrary code via a Trojan horse update.

Key dates

02Disclosure timeline

September 5, 2014 CVE published
October 13, 2025 Record updated