← Back to home
ICSA-22-333-03  ·  Published 2023-11-09  ·  View on CISA ICS-CERT ↗

Hitachi Energy MicroSCADA Pro/X SYS600 Products (Update A)

CVSS 8.8 HIGH

Risk Summary

Successful exploitation of this vulnerability could allow an unauthorized user to execute administrator level scripts.

CVEs (1)

Remediations

  • Hitachi Energy released the following recommended immediate actions:
  • For SYS600 9.x: Update to version SYS600 9.4 FP2 Hotfix 5 or up-grade to at least SYS600 version 10.4.1. A requirement to install SYS600 9.4 FP2 Hotfix 5 is to have at least the SYS600 9.4 FP2 Hotfix 4 installed.
  • For SYS600 10.x: Update to at least SYS600 version 10.4.1 Or apply general mitigation factors from Hitachi Energy.
  • For more information, see Hitachi Energy's Cybersecurity Advisory.

Affected Vendors

Hitachi Energy

Affected Products (2)

Hitachi Energy · SYS600 10.x <=10.4
Hitachi Energy · SYS600 9.x <=9.4_FP2_Hotfix_4

Affected Sectors

Energy

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more