Buffer overflow

2023-12-1915:15:00

PRIOn knowledge base

www.prio-n.com

vulnerability

sci

hci

iec 60870-5-104

buffer overflow

rtu500

reboot

7.5 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.0%

JSON

Vulnerability exists in SCI IEC 60870-5-104 and HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Specially crafted messages sent to the mentioned components are not validated properly and can result in buffer overflow and as final consequence to a reboot of an RTU500 CMU.

CPENameOperatorVersion
rtu500_firmwarege12.0.1.0
rtu500_firmwarelt12.0.15.0
rtu500_firmwarege12.2.1.0
rtu500_firmwarelt12.2.12.0
rtu500_firmwarege12.4.1.0
rtu500_firmwarelt12.4.12.0
rtu500_firmwarege12.6.1.0
rtu500_firmwarelt12.6.10.0
rtu500_firmwarege12.7.1.0
rtu500_firmwarelt12.7.7.0

Name	Operator	Version
rtu500_firmware	ge	12.0.1.0
rtu500_firmware	lt	12.0.15.0
rtu500_firmware	ge	12.2.1.0
rtu500_firmware	lt	12.2.12.0
rtu500_firmware	ge	12.4.1.0
rtu500_firmware	lt	12.4.12.0
rtu500_firmware	ge	12.6.1.0
rtu500_firmware	lt	12.6.10.0
rtu500_firmware	ge	12.7.1.0
rtu500_firmware	lt	12.7.7.0