Hitachi Energy Modular Switchgear Monitoring (MSM)

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to perform malicious command injection, trick a valid user into downloading malicious software onto their computer. Successful exploitation may also allow an attacker to pose as a legitimate user.

CVEs (2)

Remediations

• Hitachi Energy recommends security practices and firewall configurations to help protect a network from attacks originating outside the network
• Physically protect process control systems from unauthorized direct access.
• Ensure process control systems have no direct connections to the internet.
• Use firewall systems to separate process control systems from other networks.
• Ensure the firewall system only has necessary ports exposed.
• MSM should only be used to access the internet for authorized information. Portable computers and removable storage media should be carefully scanned for viruses before connecting to a network.
• Links used for access to an MSM system should not be sent by email links to MSM should not be opened. Suspicious emails should be reported to the IT administrator.
• For more information, see Hitachi Energy advisory 8DBD000T085.
• Links used for access to an MSM system should not be sent by email. Links to MSM should not be opened. Suspicious emails should be reported to the IT administrator.

Affected Vendors

Affected Products (1)

Affected Sectors

Energy