CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-4608

A vulnerability exists in HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-3. After session resumption interval is expired an RTU500 initiated update of session parameters causes an unexpected restart due to a stack overflow.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.1%

CVSS Severity

CVSS v3 Score 7.5

References

Products affected by CVE-2022-4608

Hitachienergy » Rtu500 » Version: N/A

cpe:2.3:h:hitachienergy:rtu500:-
Hitachienergy » Rtu500 Firmware » Version: 13.3.1

cpe:2.3:o:hitachienergy:rtu500_firmware:13.3.1
Hitachienergy » Rtu500 Firmware » Version: 13.3.2

cpe:2.3:o:hitachienergy:rtu500_firmware:13.3.2
Hitachienergy » Rtu500 Firmware » Version: 13.3.3

cpe:2.3:o:hitachienergy:rtu500_firmware:13.3.3
Hitachienergy » Rtu500 Firmware » Version: 13.4.1

cpe:2.3:o:hitachienergy:rtu500_firmware:13.4.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-4608

Products

Pricing

Contact Us