High severity7.5NVD Advisory· Published Sep 14, 2022· Updated Jun 17, 2026
CVE-2022-2277
CVE-2022-2277
Description
Improper Input Validation vulnerability exists in the Hitachi Energy MicroSCADA X SYS600's ICCP stack during the ICCP communication establishment causes a denial-of-service when ICCP of SYS600 is request to forward any data item updates with timestamps too distant in the future to any remote ICCP system. By default, ICCP is not configured and not enabled. This issue affects: Hitachi Energy MicroSCADA X SYS600 version 10.2 to version 10.3.1. cpe:2.3:a:hitachienergy:microscada_x_sys600:10.2:*:*:*:*:*:*:* cpe:2.3:a:hitachienergy:microscada_x_sys600:10.2.1:*:*:*:*:*:*:* cpe:2.3:a:hitachienergy:microscada_x_sys600:10.3:*:*:*:*:*:*:* cpe:2.3:a:hitachienergy:microscada_x_sys600:10.3.1:*:*:*:*:*:*:*
Affected products
210.2 to 10.3.1+ 1 more
- (no CPE)range: 10.2 to 10.3.1
- (no CPE)range: 10.2
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.