Vulnerability Details CVE-2023-4518
A vulnerability exists in the input validation of the GOOSE
messages where out of range values received and processed
by the IED caused a reboot of the device. In order for an
attacker to exploit the vulnerability, goose receiving blocks need
to be configured.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 25.2%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2023-4518
-
cpe:2.3:h:hitachienergy:relion_650:-
-
cpe:2.3:h:hitachienergy:relion_670:-
-
cpe:2.3:h:hitachienergy:relion_sam600-io:-
-
cpe:2.3:o:hitachienergy:relion_650_firmware:2.2.1
-
cpe:2.3:o:hitachienergy:relion_650_firmware:2.2.1.6
-
cpe:2.3:o:hitachienergy:relion_650_firmware:2.2.4
-
cpe:2.3:o:hitachienergy:relion_650_firmware:2.2.5
-
cpe:2.3:o:hitachienergy:relion_670_firmware:2.2.0
-
cpe:2.3:o:hitachienergy:relion_670_firmware:2.2.0.13
-
cpe:2.3:o:hitachienergy:relion_670_firmware:2.2.1
-
cpe:2.3:o:hitachienergy:relion_670_firmware:2.2.1.6
-
cpe:2.3:o:hitachienergy:relion_670_firmware:2.2.2
-
cpe:2.3:o:hitachienergy:relion_670_firmware:2.2.2.3
-
cpe:2.3:o:hitachienergy:relion_670_firmware:2.2.3
-
cpe:2.3:o:hitachienergy:relion_670_firmware:2.2.3.2
-
cpe:2.3:o:hitachienergy:relion_670_firmware:2.2.3.3
-
cpe:2.3:o:hitachienergy:relion_670_firmware:2.2.4
-
cpe:2.3:o:hitachienergy:relion_670_firmware:2.2.5
-
cpe:2.3:o:hitachienergy:relion_sam600-io_firmware:2.2.1
-
cpe:2.3:o:hitachienergy:relion_sam600-io_firmware:2.2.1.6
-
cpe:2.3:o:hitachienergy:relion_sam600-io_firmware:2.2.5