4 matches found
Hitachi Energy RTU500 series Improper Input Validation (CVE-2022-28613)
A vulnerability in the HCI Modbus TCP COMPONENT of Hitachi Energy RTU500 series CMU Firmware that is caused by the validation error in the length information carried in MBAP header allows an ATTACKER to reboot the device by sending a special crafted message. This issue affects: Hitachi Energy...
Hitachi Energy RTU500 series
1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: RTU500 series Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could cause an internal buffer overflow, which can...
CVE-2022-28613
Hitachi Energy RTU500 CMU Firmware versions 12.0.–13.2. are affected by CVE-2022-28613 due to a validation error in the MBAP header length handling in the HCI Modbus TCP function. Exploitation could cause a reboot of the RTU500 CMU when HCI Modbus TCP is enabled, with CVSS v3.1 base score 7.5 (NE...
CVE-2022-28613 Specially Crafted Modbus TCP Packet Vulnerability in RTU500 series
A vulnerability exists in the HCI Modbus TCP function included in the product versions listed above. If the HCI Modbus TCP is en-abled and configured, an attacker could exploit the vulnerability by sending a specially crafted message to the RTU500, causing the receiving RTU500 CMU to reboot. The...