Hitachi Energy RTU500 series BCI Improper Input Validation (CVE-2021-35533)

"Improper Input Validation vulnerability in the APDU parser in the Bidirectional Communication Interface BCI IEC 60870-5-104 function of Hitachi Energy RTU500 series allows an attacker to cause the receiving RTU500 CMU of which the BCI is enabled to reboot when receiving a specially crafted...

Hitachi Energy RTU500 series BCI

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: RTU500 series Bidirectional Communication Interface BCI Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a...

CVE-2021-35533

Improper Input Validation vulnerability in the APDU parser in the Bidirectional Communication Interface BCI IEC 60870-5-104 function of Hitachi Energy RTU500 series allows an attacker to cause the receiving RTU500 CMU of which the BCI is enabled to reboot when receiving a specially crafted messag...

Input validation

Improper Input Validation vulnerability in the APDU parser in the Bidirectional Communication Interface BCI IEC 60870-5-104 function of Hitachi Energy RTU500 series allows an attacker to cause the receiving RTU500 CMU of which the BCI is enabled to reboot when receiving a specially crafted messag...

CVE-2021-35533

The CVE-2021-35533 affects Hitachi Energy RTU500 series CMU firmware 12.0.x, 12.2.x and 12.4.x, in the APDU parser of the BCI IEC 60870-5-104 function. A crafted BCI message can trigger a reboot of the RTU500 CMU when the BCI is enabled and configured. By default, the BCI function is disabled, re...

bci-qc.ca Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1158582 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...