Hitachi Energy’s AFS65x, AFS67x, AFR67x and AFF66x Products

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to disclose sensitive information or lead to a Denial-of-Service (DoS).

CVEs (2)

Remediations

• Hitachi Energy has released the following mitigations/fixes:
• AFS660/665S, AFS660/665C, AFS670v2: Apply mitigation strategy as described in General Mitigation Factors Section or update to upcoming 7.1.08 when available.
• AFS670/675, AFR67x: Apply mitigation strategy as described in General Mitigation Factors Section or update to 9.1.08.
• AFS65x: EoL product - only mitigation available, no remediation expected. Apply mitigation strategy as described in General Mitigation Factors Section.
• AFF660/665: Apply mitigation strategy as described in General Mitigation Factors Section or update to upcoming release.
• Hitachi Energy also recommends general mitigations:
• Recommended security practices and firewall configurations can help protect a process control network from attacks originating from outside the network.
• Physically protect process control systems from direct access by unauthorized personnel.
• Ensure process control systems have no direct connections to the internet and are separated from other networks by a firewall system with a minimal number of exposed ports.
• Do not use process control systems for internet surfing, instant messaging, or receiving emails.
• Scan portable computers and removable storage media for malware prior connection to a control system.
• For more information, see Hitachi Energy�s Security Advisory: 8DBD000149.

Affected Vendors

Affected Products (7)

Affected Sectors

Energy