114 matches found
PT-2024-11614 · Red Lion · Relion
Name of the Vulnerable Software and Affected Versions: Relion affected versions not specified Description: A vulnerability exists in the Relion update package signature validation. A tampered update package could cause the IED to restart, resulting in a temporary Denial of Service. An attacker...
Hitachi Energy Relion 670/650/SAM600-IO Series Improper Validation of Specified Quantity in Input (CVE-2023-4518)
A vulnerability exists in the input validation of the GOOSE messages where out of range values received and processed by the IED caused a reboot of the device. In order for an attacker to exploit the vulnerability, goose receiving blocks need to be configured. This plugin only works with...
Hitachi Energy SAM600 Security Vulnerability
Hitachi Energy SAM600 is Hitachi Energy's substation automation, protection and control system. A security vulnerability exists in Hitachi Energy SAM600, which originates from a security flaw in the input validation of GOOSE. Affected products and versions: Hitachi Energy Relion 670 series versio...
CISA Releases Five Industrial Control Systems Advisories
CISA released five Industrial Control Systems ICS advisories on June 1, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-152-01 Advantech WebAccess-SCADA ICSA-23-152-02 HID Global SAFE ICSA-22-256-03 Delta...
Siemens Multiple RTOS Integer Overflow or Wraparound (CVE-2020-28895)
In Wind River VxWorks, memory allocator has a possible overflow in calculating the memory block's size to be allocated by calloc. As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to memory corruption. SCALANCE X-200, X-200IRT, and X-300...
Hitachi Energy Relion 670/650/SAM600-IO Initialization of a Resource with an Insecure Default (CVE-2021-35535)
Insecure Boot Image vulnerability in Hitachi Energy Relion Relion 670/650/SAM600-IO series allows an attacker who manages to get access to the front network port and to cause a reboot sequences of the device may exploit the vulnerability, where there is a tiny time gap during the booting process...
Hitachi Energy GMS600, PWC600, and Relion Improper Access Control (CVE-2021-35534)
Insufficient security control vulnerability in internal database access mechanism of Hitachi Energy Relion 670/650/SAM600-IO, Relion 650, GMS600, PWC600 allows attacker who successfully exploited this vulnerability, of which the product does not sufficiently restrict access to an internal databas...
The vulnerability of the software and hardware components of SCADA systems such as ABB Relion 611, Relion 615, Relion 620, Relion REF615, Relion RED615, Relion RER620, Relion RER615, Relion REX640, eVD4, REC615, and SMU615 lies in improper initialization of resources, which allows attackers to trigger maintenance-related failures.
The vulnerability of the software and hardware components of SCADA systems such as ABB Relion 611, Relion 615, Relion 620, Relion REF615, Relion RED615, Relion RER620, Relion RER615, Relion REX640, eVD4, REC615, and SMU615 is related to improper initialization of resources. Exploiting this...
ABB SMU615 Improper Initialization (CVE-2021-22283)
Improper Initialization vulnerability in ABB Relion protection relays - 611 series, ABB Relion protection relays - 615 series IEC 4.0 FP1, ABB Relion protection relays - 615 series CN 4.0 FP1, ABB Relion protection relays - 615 series IEC 5.0, ABB Relion protection relays - 615 series IEC 5.0 FP1...
ABB Relion 670 Series 和 Relion 650 Series数据伪造问题漏洞
The ABB Relion 670 Series is a transmission protection control device from ABB Switzerland. A security vulnerability exists in the Relion 670, 650, and SAM600-IO series due to an incorrect access control included in the signature verification of Hitachi Energy Relion update packages. A tampered...
Hitachi Energy Relion 670, 650 and SAM600-IO Series
1. EXECUTIVE SUMMARY CVSS v3 4.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: Relion 670, 650, and SAM600-IO Series Vulnerability: Insufficient Verification of Data Authenticity 2. RISK EVALUATION Successful exploitation of this vulnerability could cause...
CVE-2021-22283
Improper Initialization vulnerability in ABB Relion protection relays - 611 series, ABB Relion protection relays - 615 series IEC 4.0 FP1, ABB Relion protection relays - 615 series CN 4.0 FP1, ABB Relion protection relays - 615 series IEC 5.0, ABB Relion protection relays - 615 series IEC 5.0 FP1...
CVE-2021-22283
Improper Initialization vulnerability in ABB Relion protection relays - 611 series, ABB Relion protection relays - 615 series IEC 4.0 FP1, ABB Relion protection relays - 615 series CN 4.0 FP1, ABB Relion protection relays - 615 series IEC 5.0, ABB Relion protection relays - 615 series IEC 5.0 FP1...
Input validation
Improper Initialization vulnerability in ABB Relion protection relays - 611 series, ABB Relion protection relays - 615 series IEC 4.0 FP1, ABB Relion protection relays - 615 series CN 4.0 FP1, ABB Relion protection relays - 615 series IEC 5.0, ABB Relion protection relays - 615 series IEC 5.0 FP1...
CVE-2021-22283 MMS File Transfer Vulnerability impact on Distribution Automation products
Improper Initialization vulnerability in ABB Relion protection relays - 611 series, ABB Relion protection relays - 615 series IEC 4.0 FP1, ABB Relion protection relays - 615 series CN 4.0 FP1, ABB Relion protection relays - 615 series IEC 5.0, ABB Relion protection relays - 615 series IEC 5.0 FP1...
CVE-2021-22283 MMS File Transfer Vulnerability impact on Distribution Automation products
Improper Initialization vulnerability in ABB Relion protection relays - 611 series, ABB Relion protection relays - 615 series IEC 4.0 FP1, ABB Relion protection relays - 615 series CN 4.0 FP1, ABB Relion protection relays - 615 series IEC 5.0, ABB Relion protection relays - 615 series IEC 5.0 FP1...
CVE-2021-22283
The CVE-2021-22283 issue is an improper initialization vulnerability in ABB Relion devices, allowing Communication Channel Manipulation and potential DoS when accessed by a crafted MMS client. Affected products and versions (per connected sources): Relion protection relays – 611 series (1.0.0–2.0...
ABB REF615 IEC 安全漏洞
The ABB REF615 IEC is ABB's compact and versatile solution for utility and industrial power distribution systems. A security vulnerability exists in some ABB products. An attacker could exploit the vulnerability to perform communication channel operations. The following products and versions are...
PT-2022-6470 · Abb · Abb Remote Monitoring/Control +2
Name of the Vulnerable Software and Affected Versions: ABB Relion protection relays - 611 series versions 1.0.0 through 2.0.3 ABB Relion protection relays - 615 series IEC 4.0 FP1 versions 4.1.0 through 4.1.9 ABB Relion protection relays - 615 series CN 4.0 FP1 versions 4.1.0 through 4.1.8 ABB...
CVE-2022-1596 ABB Relion REX640 Insufficient file access control
Incorrect Permission Assignment for Critical Resource vulnerability in ABB REX640 PCL1, REX640 PCL2, REX640 PCL3 allows an authenticated attacker to launch an attack against the user database file and try to take control of an affected system node...