310 matches found
CVE-2023-6711
CVE-2023-6711 concerns Hitachi Energy RTU500 series CMU vulnerability in SCI IEC 60870-5-104 and HCI IEC 60870-5-104 components. Reports describe insufficient input/validation of specially crafted messages, causing a buffer overflow that can result in a reboot of the RTU500 CMU. Affected products...
CVE-2023-6711
Vulnerability exists in SCI IEC 60870-5-104 and HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Specially crafted messages sent to the mentioned components are not validated properly and can result in buffer overflow and as final consequence to a reboot of an...
CVE-2023-5768
A vulnerability exists in the HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Incomplete or wrong received APDU frame layout may cause blocking on link layer. Error reason was an endless blocking when reading incoming frames on link layer with wrong length...
CVE-2023-5768
A vulnerability exists in the HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Incomplete or wrong received APDU frame layout may cause blocking on link layer. Error reason was an endless blocking when reading incoming frames on link layer with wrong length...
Information disclosure
A vulnerability exists in the HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Incomplete or wrong received APDU frame layout may cause blocking on link layer. Error reason was an endless blocking when reading incoming frames on link layer with wrong length...
CVE-2023-5768
A vulnerability exists in the HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Incomplete or wrong received APDU frame layout may cause blocking on link layer. Error reason was an endless blocking when reading incoming frames on link layer with wrong length...
CVE-2023-5768
The CVE-2023-5768 issue concerns Hitachi Energy RTU500 series using HCI IEC 60870-5-104. The vulnerability arises from incomplete or incorrect APDU frame layout, which can block the link layer; an endless blocking condition can occur while reading incoming frames when APDU length information is w...
Hitachi Energy RTU500 series Stack-Based Buffer Overflow (CVE-2022-2502)
A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-5 and the CMU contains the license feature Advanced security' which must b...
Hitachi Energy RTU500 series Stack-Based Buffer Overflow (CVE-2022-4608)
A vulnerability exists in HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-3. After session resumption interval is expired an RTU500 initiated update of...
CVE-2022-4608
A vulnerability exists in HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-3. After session resumption interval is expired an RTU500 initiated update of...
CVE-2022-2502
A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-5 and the CMU contains the license feature ‘Advanced security’ which must ...
CVE-2022-2502
A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-5 and the CMU contains the license feature ‘Advanced security’ which must ...
Stack overflow
A vulnerability exists in HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-3. After session resumption interval is expired an RTU500 initiated update of...
Buffer overflow
A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-5 and the CMU contains the license feature ‘Advanced security’ which must ...
CVE-2022-4608
CVE-2022-4608 affects Hitachi Energy RTU500 series (CMU) via the HCI IEC 60870-5-104 function. The root cause is missing input validation in the HCI 60870-5-104 path when IEC 62351-3/5 support is enabled, leading to a stack overflow after the session resumption interval expires when the CMU updat...
CVE-2022-4608
A vulnerability exists in HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-3. After session resumption interval is expired an RTU500 initiated update of...
CVE-2022-2502
A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-5 and the CMU contains the license feature ‘Advanced security’ which must ...
CVE-2022-2502
A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-5 and the CMU contains the license feature ‘Advanced security’ which must ...
CVE-2022-2502
The CVE-2022-2502 issue affects Hitachi Energy RTU500 series CMU firmware with HCI IEC 60870-5-104 when IEC 62351-5 is enabled and the CMU license feature “Advanced security” is active. The vulnerability arises from missing input validation in the HCI IEC 60870-5-104 function, which can cause an ...
Hitachi Energy RTU500 输入验证错误漏洞
Hitachi Energy RTU500 is a series of industrial control components from Hitachi, Ltd Hitachi, Japan. A security vulnerability exists in the Hitachi Energy RTU500 Series that stems from a lack of input data validation, resulting in a buffer overflow vulnerability in the HCI IEC 60870-5-104 functio...