Hitachi Energy RTU500 series

Risk Summary

Successful exploitation of these vulnerabilities could cause a buffer overflow and reboot of the product.

CVEs (2)

Remediations

• Hitachi Energy recommends users update to CMU Firmware versions 13.3.3 or 13.4.1.
• The reported vulnerabilities affect only the RTU500 series with HCI IEC 60870-5-104 and IEC62351-5 or IEC 62351-5 configured and enabled. A possible mitigation is to disable the HCI IEC 60870-5-104 function or its IEC 62351-3 and IEC 62351-5 features if they are not used. By default, the HCI IEC 60870-5-104 and its IEC 62351-3 or IEC 62351-5 support are disabled.
• Hitachi Energy recommends the following general mitigations:
• Recommended security practices and firewall configurations can help protect a process control network from attacks originating from outside the network.
• Physically protect process control systems from direct access by unauthorized personnel.
• Ensure process control systems have no direct connections to the internet and are separated from other networks via a firewall system with minimal exposed ports.
• Do not use process control systems for internet surfing, instant messaging, or receiving emails.
• Scan portable computers and removable storage media for malware prior connection to a control system.
• Enforce proper password policies and processes.
• For more information, see Hitachi Energy's Security Advisory: 8DBD000121.

Affected Vendors

Affected Products (1)

Affected Sectors

Energy