VYPR
High severity7.5NVD Advisory· Published Feb 24, 2026· Updated May 26, 2026

CVE-2026-1773

CVE-2026-1773

Description

IEC 60870-5-104 used in RTU500: Potential Denial of Service impact on reception of invalid U-format frame. Product is only affected if IEC 60870-5-104 bi-directional functionality is configured. Enabling secure communication following IEC 62351-3 does not remediate the vulnerability but mitigates the risk of exploitation.

Affected products

10
  • cpe:2.3:o:hitachienergy:rtu520_firmware:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:hitachienergy:rtu520_firmware:*:*:*:*:*:*:*:*range: >=12.7.1,<=12.7.7
    • cpe:2.3:o:hitachienergy:rtu520_firmware:13.8.1:*:*:*:*:*:*:*
  • cpe:2.3:o:hitachienergy:rtu530_firmware:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:hitachienergy:rtu530_firmware:*:*:*:*:*:*:*:*range: >=12.7.1,<=12.7.7
    • cpe:2.3:o:hitachienergy:rtu530_firmware:13.8.1:*:*:*:*:*:*:*
  • cpe:2.3:o:hitachienergy:rtu540_firmware:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:hitachienergy:rtu540_firmware:*:*:*:*:*:*:*:*range: >=12.7.1,<=12.7.7
    • cpe:2.3:o:hitachienergy:rtu540_firmware:13.8.1:*:*:*:*:*:*:*
  • cpe:2.3:o:hitachienergy:rtu560_firmware:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:hitachienergy:rtu560_firmware:*:*:*:*:*:*:*:*range: >=12.7.1,<=12.7.7
    • cpe:2.3:o:hitachienergy:rtu560_firmware:13.8.1:*:*:*:*:*:*:*
  • Hitachi/RTU500llm-fuzzy
  • Hitachi Energy/RTU500 series CMU firmwarev5
    Range: 12.7.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.