CVE-2019-18247

An attacker may use a specially crafted message to force Relion 650 series versions 1.3.0.5 and prior or Relion 670 series versions 1.2.3.18, 2.0.0.11, 2.1.0.1 and prior to reboot, which could cause a denial of service...

CVE-2025-1718

An authenticated user with file access privilege via FTP access can cause the Relion 670/650 and SAM600-IO series device to reboot due to improper disk space management...

EUVD-2019-8051

Malware in sbrugna...

CVE-2025-2403

A denial-of-service vulnerability due to improper prioritization of network traffic over protection mechanism exists in Relion 670/650 and SAM600-IO series device that if exploited could potentially cause critical functions like LDCM Line Distance Communication Module to malfunction...

Hitachi Energy Relion 670/650 and SAM600-IO Series (Update A)

SUMMARY Hitachi Energy is aware of a vulnerability that affects the Relion 670/650 and SAM600-IO series IED device versions that are listed in this document. An authenticated attacker successfully exploiting this vulnerability via FTP access can cause the device to reboot due to improper disk...

CVE-2025-2403

A denial-of-service vulnerability due to improper prioritization of network traffic over protection mechanism exists in Relion 670/650 and SAM600-IO series device that if exploited could potentially cause critical functions like LDCM Line Distance Communication Module to malfunction...

PT-2025-26713 · Sam600-Io +1 · Sam600-Io +1

Name of the Vulnerable Software and Affected Versions: Relion 670/650 and SAM600-IO series devices affected versions not specified Description: The issue allows an authenticated user with file access privilege via FTP access to cause the device to reboot due to improper disk space management...

PT-2025-26714 · Sam600-Io +1 · Sam600-Io +1

Name of the Vulnerable Software and Affected Versions: Relion 670/650 and SAM600-IO series device affected versions not specified Description: A denial-of-service issue exists due to improper prioritization of network traffic over protection mechanisms. This could cause critical functions, such a...

Hitachi Relion多款产品 安全漏洞

Hitachi Relion 650, among others, is a software for protection, control, measurement and monitoring of power distribution and transmission grids from Hitachi, Japan. A security vulnerability exists in various Hitachi Relion products, which stems from improper prioritization of network traffic and...

CVE-2019-18253

An attacker could use specially crafted paths in a specific request to read or delete files from Relion 670 Series versions 1p1r26, 1.2.3.17, 2.0.0.10, RES670 2.0.0.4, 2.1.0.1, and prior outside the intended directory...

Siemens Multiple RTOS Integer Overflow or Wraparound (CVE-2020-28895)

In Wind River VxWorks, memory allocator has a possible overflow in calculating the memory block's size to be allocated by calloc. As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to memory corruption. SCALANCE X-200, X-200IRT, and X-300...

Hitachi Energy Relion 670/650/SAM600-IO Initialization of a Resource with an Insecure Default (CVE-2021-35535)

Insecure Boot Image vulnerability in Hitachi Energy Relion Relion 670/650/SAM600-IO series allows an attacker who manages to get access to the front network port and to cause a reboot sequences of the device may exploit the vulnerability, where there is a tiny time gap during the booting process...

ABB Relion 670 Series 和 Relion 650 Series数据伪造问题漏洞

The ABB Relion 670 Series is a transmission protection control device from ABB Switzerland. A security vulnerability exists in the Relion 670, 650, and SAM600-IO series due to an incorrect access control included in the signature verification of Hitachi Energy Relion update packages. A tampered...

Hitachi Energy Relion 670, 650 and SAM600-IO Series

1. EXECUTIVE SUMMARY CVSS v3 4.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: Relion 670, 650, and SAM600-IO Series Vulnerability: Insufficient Verification of Data Authenticity 2. RISK EVALUATION Successful exploitation of this vulnerability could cause...

Hitachi Energy Relion 670, 650 and SAM600-IO Improper Input Validation (CVE-2021-27196)

Improper Input Validation vulnerability in Hitachi ABB Power Grids Relion 670 Series, Relion 670/650 Series, Relion 670/650/SAM600-IO, Relion 650, REB500, RTU500 Series, FOX615 TEGO1, MSM, GMS600, PWC600 allows an attacker with access to the IEC 61850 network with knowledge of how to reproduce th...

ABB Relion 670 Series Improper Limitation of a Pathname to a Restricted Directory (CVE-2019-18253)

An attacker could use specially crafted paths in a specific request to read or delete files from Relion 670 Series versions 1p1r26, 1.2.3.17, 2.0.0.10, RES670 2.0.0.4, 2.1.0.1, and prior outside the intended directory. This plugin only works with Tenable.ot. Please visit...

Hitachi Energy GMS600, PWC600, and Relion

1. EXECUTIVE SUMMARY CVSS v3 7.2 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: GMS600, PWC600, and Relion 670/650/SAM600-IO Vulnerability: Improper Access Controls 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled...

CVE-2021-35534

Insufficient security control vulnerability in internal database access mechanism of Hitachi Energy Relion 670/650/SAM600-IO, Relion 650, GMS600, PWC600 allows attacker who successfully exploited this vulnerability, of which the product does not sufficiently restrict access to an internal databas...

Security feature bypass

Insufficient security control vulnerability in internal database access mechanism of Hitachi Energy Relion 670/650/SAM600-IO, Relion 650, GMS600, PWC600 allows attacker who successfully exploited this vulnerability, of which the product does not sufficiently restrict access to an internal databas...

CVE-2021-35535

Insecure Boot Image vulnerability in Hitachi Energy Relion Relion 670/650/SAM600-IO series allows an attacker who manages to get access to the front network port and to cause a reboot sequences of the device may exploit the vulnerability, where there is a tiny time gap during the booting process...