Unrated severityNVD Advisory· Published May 2, 2022· Updated Sep 25, 2024
Specially Crafted Modbus TCP Packet Vulnerability in RTU500 series
CVE-2022-28613
Description
A vulnerability exists in the HCI Modbus TCP function included in the product versions listed above. If the HCI Modbus TCP is en-abled and configured, an attacker could exploit the vulnerability by sending a specially crafted message to the RTU500, causing the receiving RTU500 CMU to reboot. The vulnerability is caused by the validation error in the length information carried in MBAP header in the HCI Modbus TCP function.
Affected products
2- Hitachi Energy/RTU500 series CMU Firmwarev5Range: 12.0.*
Patches
Vulnerability mechanics
References
1- publisher.hitachienergy.com/previewmitrevendor-advisory
News mentions
0No linked articles in our index yet.