Hitachi Energy RTU500 series

Risk Summary

Successful exploitation of this vulnerability could cause an internal buffer overflow, which can reboot the product.

CVEs (1)

Remediations

• RTU500 series CMU: firmware version 12.0.1.0-12.0.13.0: Update to version 12.0.14.0 or higher.
• RTU500 series CMU: firmware version 12.2.1.0-12.2.11.0: Update to version 12.2.12.0 or higher.
• RTU500 series CMU: firmware version 12.4.1.0-12.4.11.0: Update to version 12.4.12.0 or higher.
• RTU500 series CMU: firmware version 12.6.1.0-12.6.7.0: Update to version 12.6.8.0 or higher.
• RTU500 series CMU: firmware version 12.7.1.0-12.7.3.0: Update to version 12.7.4.0 or higher.
• RTU500 series CMU: firmware version 13.2.1.0-13.2.4.0: Update to version 13.3.1.0, 13.2.5.0, or higher.
• Because the vulnerability affects only the RTU500 series with HCI Modbus TCP configured and enabled, a possible mitigation is to disable the HCI Modbus TCP function if not used. The HCI Modbus TCP is disabled by default.
• Physically protect process control systems from unauthorized direct access.
• Separate process control systems from other networks using a firewall system with only the necessary ports open.
• Process control systems should not be used for internet surfing, instant messaging, or receiving emails.
• Portable computers and removable storage media should be carefully scanned for viruses before connecting to a control system.
• For more information, see Hitachi Energy advisory 8DBD000103

Affected Vendors

Affected Products (6)

Affected Sectors

Energy