Hitachi Energy MSM (Update A)

Risk Summary

Hitachi Energy has assessed public reports of vulnerabilities initially believed to affect certain versions of the MSM product. Following further technical analysis and validation, Hitachi Energy has determined that the previously referenced product versions are not affected by these vulnerabilities. No customer action is required. Please consult the Recommended Immediate Actions Section for further advice.

CVEs (2)

Remediations

• Hitachi Energy recommends following general mitigation factors. MSM is not intrinsically designed to be directly connected to the internet. Disconnect the device from any internet-facing network, if any installation has performed the same. It is recommended to adopt user access management controls and state-of-the-art antivirus software equipped with the latest signature rules on computers that have the MSM Client application installed and running. As an example, please use the operating system's (OS) built-in user access management functionality, if supported, to limit the probability of unauthorized access followed by rogue commands via MSM Client application. It is also recommended to follow the hardening guidelines published by the Center for Internet Security (CIS) https://www.cisecurity.org/about-us/ to protect the host operating system of computers that connect with MSM. This measure would then prevent the lateral movement of the attack vector into MSM via these connected devices. Some examples for Windows-based computers are listed here. 1) CIS Microsoft Windows Desktop Benchmarks (cisecurity.org) 2) CIS Microsoft Windows Server Benchmarks (cisecurity.org) Cybersecurity Advisory - Industrial Control Systems Cybersecurity Best Practices https://publisher.hitachienergy.com/preview?DocumentID=8DBD000235&LanguageCode=en&DocumentPartId=&Action=Launch

Affected Vendors

Affected Products (1)

Affected Sectors

Energy