Hitachi ABB Power Grids System Data Manager

Risk Summary

Successful exploitation of this vulnerability could allow an attacker access to sensitive information.

CVEs (1)

Remediations

• Hitachi ABB Power Grids recommends users apply update Version 1.2 FP2 HF6 (Build Nr. 1.2.14002.257) or newer at the earliest convenience. Users can download the latest SDM600 version from the product website. After successful upgrade, Hitachi ABB Power Grids recommends moving previously created vulnerable backups to a secure location to avoid unauthorized access.
• Implement and continuously revise least privileges principles to minimize permissions and accesses to SDM600 related resources.
• Follow security practices as defined in SDM600 security deployment guideline and firewall configurations to help protect process control networks from attacks that originate from outside the network. Such practices include that process control systems are: Physically protected from direct access by unauthorized personnel. Not directly connected to the Internet. Separated from other networks by means of a firewall system that has a minimal number of ports exposed. Not used for Internet surfing, instant messaging, or receiving e-mails.
• For additional information, see Hitachi ABB Power Grids security advisory.

Affected Vendors

Affected Products (1)

Affected Sectors

Energy