Lucene search
+L

310 matches found

CVE
CVE
added 2023/12/19 2:53 p.m.70 views

CVE-2023-6711

CVE-2023-6711 concerns Hitachi Energy RTU500 series CMU vulnerability in SCI IEC 60870-5-104 and HCI IEC 60870-5-104 components. Reports describe insufficient input/validation of specially crafted messages, causing a buffer overflow that can result in a reboot of the RTU500 CMU. Affected products...

7.5CVSS7.6AI score0.00669EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/12/19 2:53 p.m.43 views

CVE-2023-6711

Vulnerability exists in SCI IEC 60870-5-104 and HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Specially crafted messages sent to the mentioned components are not validated properly and can result in buffer overflow and as final consequence to a reboot of an...

5.9CVSS7.8AI score0.00669EPSS
Exploits0References1
NVD
NVD
added 2023/12/04 3:15 p.m.35 views

CVE-2023-5768

A vulnerability exists in the HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Incomplete or wrong received APDU frame layout may cause blocking on link layer. Error reason was an endless blocking when reading incoming frames on link layer with wrong length...

6.1CVSS0.00412EPSS
Exploits0References1
OSV
OSV
added 2023/12/04 3:15 p.m.6 views

CVE-2023-5768

A vulnerability exists in the HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Incomplete or wrong received APDU frame layout may cause blocking on link layer. Error reason was an endless blocking when reading incoming frames on link layer with wrong length...

6.1CVSS5.8AI score0.00412EPSS
Exploits0References1
Prion
Prion
added 2023/12/04 3:15 p.m.16 views

Information disclosure

A vulnerability exists in the HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Incomplete or wrong received APDU frame layout may cause blocking on link layer. Error reason was an endless blocking when reading incoming frames on link layer with wrong length...

5.8CVSS6.8AI score0.00412EPSS
Exploits0References1Affected Software4
Cvelist
Cvelist
added 2023/12/04 2:33 p.m.30 views

CVE-2023-5768

A vulnerability exists in the HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Incomplete or wrong received APDU frame layout may cause blocking on link layer. Error reason was an endless blocking when reading incoming frames on link layer with wrong length...

5.9CVSS6.3AI score0.00412EPSS
Exploits0References1
CVE
CVE
added 2023/12/04 2:33 p.m.50 views

CVE-2023-5768

The CVE-2023-5768 issue concerns Hitachi Energy RTU500 series using HCI IEC 60870-5-104. The vulnerability arises from incomplete or incorrect APDU frame layout, which can block the link layer; an endless blocking condition can occur while reading incoming frames when APDU length information is w...

6.1CVSS6.1AI score0.00412EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/09/06 12:0 a.m.22 views

Hitachi Energy RTU500 series Stack-Based Buffer Overflow (CVE-2022-2502)

A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-5 and the CMU contains the license feature Advanced security' which must b...

7.5CVSS7.3AI score0.0054EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/09/06 12:0 a.m.18 views

Hitachi Energy RTU500 series Stack-Based Buffer Overflow (CVE-2022-4608)

A vulnerability exists in HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-3. After session resumption interval is expired an RTU500 initiated update of...

7.5CVSS7.1AI score0.00596EPSS
Exploits0References3
NVD
NVD
added 2023/07/26 6:15 a.m.24 views

CVE-2022-4608

A vulnerability exists in HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-3. After session resumption interval is expired an RTU500 initiated update of...

7.5CVSS7.5AI score0.00596EPSS
Exploits0References2
NVD
NVD
added 2023/07/26 6:15 a.m.20 views

CVE-2022-2502

A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-5 and the CMU contains the license feature ‘Advanced security’ which must ...

7.5CVSS7.7AI score0.0054EPSS
Exploits0References2
OSV
OSV
added 2023/07/26 6:15 a.m.4 views

CVE-2022-2502

A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-5 and the CMU contains the license feature ‘Advanced security’ which must ...

7.5CVSS6AI score0.0054EPSS
Exploits0References2
Prion
Prion
added 2023/07/26 6:15 a.m.19 views

Stack overflow

A vulnerability exists in HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-3. After session resumption interval is expired an RTU500 initiated update of...

5CVSS7.4AI score0.00596EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/07/26 6:15 a.m.18 views

Buffer overflow

A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-5 and the CMU contains the license feature ‘Advanced security’ which must ...

5CVSS7.6AI score0.0054EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/07/26 5:26 a.m.51 views

CVE-2022-4608

CVE-2022-4608 affects Hitachi Energy RTU500 series (CMU) via the HCI IEC 60870-5-104 function. The root cause is missing input validation in the HCI 60870-5-104 path when IEC 62351-3/5 support is enabled, leading to a stack overflow after the session resumption interval expires when the CMU updat...

7.5CVSS7.4AI score0.00596EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/07/26 5:26 a.m.31 views

CVE-2022-4608

A vulnerability exists in HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-3. After session resumption interval is expired an RTU500 initiated update of...

7.5CVSS7.6AI score0.00596EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/26 5:25 a.m.12 views

CVE-2022-2502

A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-5 and the CMU contains the license feature ‘Advanced security’ which must ...

7.5CVSS7.4AI score0.0054EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/07/26 5:25 a.m.28 views

CVE-2022-2502

A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-5 and the CMU contains the license feature ‘Advanced security’ which must ...

7.5CVSS7.9AI score0.0054EPSS
Exploits0References1
CVE
CVE
added 2023/07/26 5:25 a.m.49 views

CVE-2022-2502

The CVE-2022-2502 issue affects Hitachi Energy RTU500 series CMU firmware with HCI IEC 60870-5-104 when IEC 62351-5 is enabled and the CMU license feature “Advanced security” is active. The vulnerability arises from missing input validation in the HCI IEC 60870-5-104 function, which can cause an ...

7.5CVSS7.7AI score0.0054EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/07/26 12:0 a.m.7 views

Hitachi Energy RTU500 输入验证错误漏洞

Hitachi Energy RTU500 is a series of industrial control components from Hitachi, Ltd Hitachi, Japan. A security vulnerability exists in the Hitachi Energy RTU500 Series that stems from a lack of input data validation, resulting in a buffer overflow vulnerability in the HCI IEC 60870-5-104 functio...

7.5CVSS7.6AI score0.0054EPSS
Exploits0References2
Rows per page
Query Builder