Hitachi Energy FOXMAN-UN and UNEM Products

Risk Summary

Successful exploitation of this vulnerability could permit an attacker to access sensitive information.

CVEs (1)

Remediations

• Recommended Mitigations for the following FOXMAN-UN and UNEM products:
• FOXMAN-UN: Version R16A, update to FOXMAN-UN R16B when released or apply general mitigation factors.
• FOXMAN-UN: Version R15B, update to FOXMAN-UN R16B when released or apply general mitigation factors.
• FOXMAN-UN: Version R15A, this is an end-of-life version thus no fix will be provided. Apply general mitigation factors.
• FOXMAN-UN: Version R14B, this is an end-of-life version thus no fix will be provided. Apply general mitigation factors.
• FOXMAN-UN: Version R14A, this is an end-of-life version thus no fix will be provided. Apply general mitigation factors.
• FOXMAN-UN: Version R11B, this is an end-of-life version thus no fix will be provided. Apply general mitigation factors.
• FOXMAN-UN: Version R11A, this is an end-of-life version thus no fix will be provided. Apply general mitigation factors.
• FOXMAN-UN: Version R10C, this is an end-of-life version thus no fix will be provided. Apply general mitigation factors.
• FOXMAN-UN: Version R9C, this is an end-of-life version thus no fix will be provided. Apply general mitigation factors.
• UNEM: Version R16A, update to UNEM R16B when released or apply general mitigation factors.
• UNEM: Version R15B, update to UNEM R16B when released or apply general mitigation factors.
• UNEM: Version R15A, this is an end-of-life version thus no fix will be provided. Apply general mitigation factors.
• UNEM: Version R14B, this is an end-of-life version thus no fix will be provided. Apply general mitigation factors.
• UNEM: Version R14A, this is an end-of-life version thus no fix will be provided. Apply general mitigation factors.
• UNEM: Version R11B, this is an end-of-life version thus no fix will be provided. Apply general mitigation factors.
• UNEM: Version R11A, this is an end-of-life version thus no fix will be provided. Apply general mitigation factors.
• UNEM: Version R10C, this is an end-of-life version thus no fix will be provided. Apply general mitigation factors.
• UNEM: Version R9C, this is an end-of-life version thus no fix will be provided. Apply general mitigation factors.
• Hitachi Energy recommends the following general mitigation factors and security practices:
• Configure firewalls to protect process control networks from attacks originating from outside the network.
• Physically protect process control systems from direct access by unauthorized personnel.
• Avoid directly connecting control systems to the Internet.
• Separate process control networks from other networks using a firewall system with a minimal number of exposed ports.
• Process control systems should not be used for Internet surfing, instant messaging, or receiving emails.
• Portable computers and removable storage media should be carefully scanned for viruses before connecting to a control system.
• Enforce proper password policies and processes.
• For more information, see Hitachi Energy advisories 8DBD000155.
• For more information, see Hitachi Energy advisories 8DBD000166.

Affected Vendors

Affected Products (18)

Affected Sectors

Energy