ICSA-22-272-02
·
Published 2022-09-29
·
View on CISA ICS-CERT ↗
Hitachi Energy MicroSCADA Pro X SYS600
CVSS 7.5
HIGH
Risk Summary
Successful exploitation of these vulnerabilities could cause the affected modules in the product to stop working.
CVEs (2)
Remediations
- For SYS600 9.4: upgrade to at least SYS600 version 10.4.
- For SYS600 10.x: update to at least SYS600 version 10.4.
- Hitachi Energy recommends following 1MRK511518 MicroSCADA X Cyber Security Deployment Guidelines.
- For additional information and support, users should contact Hitachi Energy service organization.
- Physically protect process control systems from unauthorized direct access.
- Separate process control systems from the internet and other networks using firewall system with minimal open ports.
- Process control systems should not be used for internet surfing, instant messaging, or email.
- Portable computers and removable storage media should be carefully scanned for viruses connecting to a control system
- For more information, see Hitachi Energy advisory 8DBD000107.
Affected Vendors
Hitachi Energy
Affected Products (2)
Hitachi Energy
·
SYS600
9.x
Hitachi Energy
·
SYS600
<= 10.3.1
Affected Sectors
Energy
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more