Hitachi EnergyCVELIST:CVE-2021-35529CVE-2021-35529 Password in Memory Vulnerability in Retail Operations Product and Counterparty Settlement and Billing (CSB)
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N
AI Score
Confidence
High
EPSS
Percentile
60.7%
Insufficiently Protected Credentials vulnerability in client environment of Hitachi ABB Power Grids Retail Operations and Counterparty Settlement Billing (CSB) allows an attacker or unauthorized user to access database credentials, shut down the product and access or alter. This issue affects: Hitachi ABB Power Grids Retail Operations version 5.7.2 and prior versions. Hitachi ABB Power Grids Counterparty Settlement Billing (CSB) version 5.7.2 and prior versions.
CNA Affected
[
{
"platforms": [
"prior to Build Nr. 1.2.14002.257"
],
"product": "Retail Operations",
"vendor": "Hitachi ABB Power Grids",
"versions": [
{
"lessThanOrEqual": "5.7.2",
"status": "affected",
"version": "5.7.2",
"versionType": "custom"
}
]
},
{
"product": "Counterparty Settlement and Billing (CSB)",
"vendor": "Hitachi ABB Power Grids",
"versions": [
{
"lessThanOrEqual": "5.7.2",
"status": "affected",
"version": "5.7.2",
"versionType": "custom"
}
]
}
]Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N
AI Score
Confidence
High
EPSS
Percentile
60.7%