Improper Input Validation vulnerability in the APDU parser in the Bidirectional Communication Interface (BCI) IEC 60870-5-104 function of Hitachi Energy RTU500 series allows an malicious user to cause the receiving RTU500 CMU of which the BCI is enabled to reboot when receiving a specially crafted message. By default, BCI IEC 60870-5-104 function is disabled (not configured). This issue affects: Hitachi Energy RTU500 series CMU Firmware version 12.0.* (all versions); CMU Firmware version 12.2.* (all versions); CMU Firmware version 12.4.* (all versions).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hitachienergy rtu500_firmware 12.0 |
||
hitachienergy rtu500_firmware 12.2 |
||
hitachienergy rtu500_firmware 12.4 |