CVE-2022-28613 Specially Crafted Modbus TCP Packet Vulnerability in RTU500 series

🗓️ 02 May 2022 19:01:06Reported by Hitachi EnergyType

Vulnerability in Hitachi Energy RTU500 series CMU Firmwar

Reporter	Title	Published	Views	Family All 12
ATTACKERKB	CVE-2022-28613	19 Apr 202210:00	–	attackerkb
BDU FSTEC	The vulnerability of the HCI component, which operates on the Modbus TCP protocol, and is found in Hitachi Energy RTU500 CMU series programmable logic controllers, allows a attacker to trigger a system reboot.	11 May 202200:00	–	bdu_fstec
Circl	CVE-2022-28613	2 May 202222:28	–	circl
CNNVD	Hitachi Energy RTU500 输入验证错误漏洞	2 May 202200:00	–	cnnvd
CVE	CVE-2022-28613	2 May 202219:01	–	cve
EUVD	EUVD-2022-33055	3 Oct 202520:07	–	euvd
ICS	Hitachi Energy RTU500 series	30 Aug 202200:00	–	ics
NVD	CVE-2022-28613	2 May 202219:15	–	nvd
OSV	CVE-2022-28613	2 May 202219:15	–	osv
Prion	Information disclosure	2 May 202219:15	–	prion

[
  {
    "defaultStatus": "unaffected",
    "product": "RTU500 series CMU Firmware",
    "vendor": "Hitachi Energy",
    "versions": [
      {
        "status": "affected",
        "version": "12.0.*"
      },
      {
        "status": "affected",
        "version": "12.2.*"
      },
      {
        "status": "affected",
        "version": "12.4.*"
      },
      {
        "status": "affected",
        "version": "12.6.*"
      },
      {
        "status": "affected",
        "version": "12.7.*"
      },
      {
        "status": "affected",
        "version": "13.2.*"
      }
    ]
  }
]

Source	Link
publisher	www.publisher.hitachienergy.com/preview

25 Sep 2024 07:58Current

7.5High risk

Vulners AI Score7.5

CVSS 3.17.5

EPSS0.00296

CWE-1284