ICSA-22-270-01
·
Published 2022-09-27
·
View on CISA ICS-CERT ↗
Hitachi Energy AFS660/AFS665
CVSS 9.8
CRITICAL
Risk Summary
Successful exploitation of this vulnerability could allow an attacker to overflow an internal buffer and fully compromise the target device.
CVEs (1)
Remediations
- Hitachi Energy recommends users update to 7.1.05 or later or apply mitigation strategies.
- Physically protect process control systems from unauthorized direct access.
- Separate process control systems from the internet and other networks using a firewall system with minimal open ports.
- Process control systems should not be used for internet surfing, instant messaging, or email.
- Portable computers and removable storage media should be carefully scanned for viruses before connecting to a control system.
- For more information, see Hitachi Energy advisory 8DBD000122.
Affected Vendors
Hitachi Energy
Affected Products (1)
Hitachi Energy
·
AFS660/AFS665
<= 7.0.02
Affected Sectors
Energy
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more