CVE-2022-3353



A vulnerability exists in the IEC 61850 communication stack that affects multiple Hitachi Energy products.

An attacker could exploit the vulnerability by using a specially crafted message sequence, to force the IEC 61850 MMS-server communication stack, to stop accepting new MMS-client connections.




Already existing/established client-server connections are not affected.





List of affected CPEs:




  *  cpe:2.3:o:hitachienergy:fox61x_tego1:r15b08:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:fox61x_tego1:r2a16_3:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:fox61x_tego1:r2a16:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:fox61x_tego1:r1e01:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:fox61x_tego1:r1d02:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:fox61x_tego1:r1c07:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:fox61x_tego1:r1b02:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:gms600:1.3.0:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.1.*:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.5.*:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.6.0:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.6.0.1:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.7.0:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.7.2:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.8.0:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:itt600_sa_explorer:2.0.*:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:itt600_sa_explorer:2.1.0.4:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:itt600_sa_explorer:2.1.0.5:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:microscada_x_sys600:10:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:microscada_x_sys600:10.*:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:microscada_x_sys600:10.2:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:microscada_x_sys600:10.2.1:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:microscada_x_sys600:10.3:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:microscada_x_sys600:10.3.1:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:microscada_x_sys600:10.4:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:microscada_x_sys600:10.4.1:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:mms:2.2.3:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:pwc600:1.0:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:pwc600:1.1:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:pwc600:1.2:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:reb500:7:*:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:reb500:8:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:relion670:1.2.*:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:relion670:2.0.*:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:relion650:1.1.*:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:relion650:1.3.*:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:relion650:2.1.*:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:relion670:2.1.*:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:relionSAM600-IO:2.2.1:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:relionSAM600-IO:2.2.5:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:relion670:2.2.*:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:relion650:2.2.*:*:*:*:*:*:*:*
  *  cpe:2.3:o:hitachienergy:rtu500cmu:12.*.*:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:rtu500cmu:13.*.*:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:txpert_hub_coretec_4:2.*:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:txpert_hub_coretec_4:3.0:*:*:*:*:*:*:*
  *  cpe:2.3:a:hitachienergy:txpert_hub_coretec_5:3.0:*:*:*:*:*:*:*
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Hitachi EnergyCNA
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 55%
VendorProductVersion
hitachienergysys600_firmware
10.1 ≤
𝑥
≤ 10.3.1
hitachienergyrtu500_firmware
12.0.1.0 ≤
𝑥
≤ 12.0.14.0
hitachienergyrtu500_firmware
12.2.1.0 ≤
𝑥
≤ 12.2.11.0
hitachienergyrtu500_firmware
12.4.1.0 ≤
𝑥
≤ 12.4.11.0
hitachienergyrtu500_firmware
12.6.1.0 ≤
𝑥
≤ 12.6.8.0
hitachienergyrtu500_firmware
12.7.1.0 ≤
𝑥
≤ 12.7.4.0
hitachienergyrtu500_firmware
13.2.1.0 ≤
𝑥
≤ 13.2.5.0
hitachienergyrtu500_firmware
13.3.1 ≤
𝑥
≤ 13.3.3
hitachienergyrtu500_firmware
13.4.1
hitachienergyreb500_firmware
7.0 ≤
𝑥
< 8.3.3
hitachienergypwc600_firmware
1.0
hitachienergypwc600_firmware
1.1
hitachienergypwc600_firmware
1.2
hitachienergymodular_switchgear_monitoring_firmware
𝑥
≤ 2.2.3
hitachienergyitt600_sa_explorer
1.1.0
hitachienergyitt600_sa_explorer
1.1.1
hitachienergyitt600_sa_explorer
1.1.2
hitachienergyitt600_sa_explorer
1.5.0
hitachienergyitt600_sa_explorer
1.5.1
hitachienergyitt600_sa_explorer
1.6.0
hitachienergyitt600_sa_explorer
1.6.0.1
hitachienergyitt600_sa_explorer
1.7.0
hitachienergyitt600_sa_explorer
1.7.2
hitachienergyitt600_sa_explorer
1.8.0
hitachienergyitt600_sa_explorer
2.0.1
hitachienergyitt600_sa_explorer
2.0.2
hitachienergyitt600_sa_explorer
2.0.3
hitachienergyitt600_sa_explorer
2.0.4.1
hitachienergyitt600_sa_explorer
2.0.5.0
hitachienergyitt600_sa_explorer
2.0.5.4
hitachienergyitt600_sa_explorer
2.1.0.4
hitachienergyitt600_sa_explorer
2.1.0.5
hitachienergyrelion_sam600-io_firmware
2.2.1
hitachienergyrelion_sam600-io_firmware
2.2.5
hitachienergyrelion_650_firmware
1.1
hitachienergyrelion_650_firmware
1.3
hitachienergyrelion_650_firmware
2.1
hitachienergyrelion_650_firmware
2.2.0
hitachienergyrelion_650_firmware
2.2.1
hitachienergyrelion_650_firmware
2.2.2
hitachienergyrelion_650_firmware
2.2.3
hitachienergyrelion_650_firmware
2.2.4
hitachienergyrelion_650_firmware
2.2.5
hitachienergyrelion_670_firmware
1.2
hitachienergyrelion_670_firmware
2.0
hitachienergyrelion_670_firmware
2.1
hitachienergyrelion_670_firmware
2.2.0
hitachienergyrelion_670_firmware
2.2.1
hitachienergyrelion_670_firmware
2.2.2
hitachienergyrelion_670_firmware
2.2.3
hitachienergyrelion_670_firmware
2.2.4
hitachienergyrelion_670_firmware
2.2.5
hitachienergygms600_firmware
1.3.0
hitachienergytxpert_hub_coretec_4_firmware
2.0.0 ≤
𝑥
≤ 3.0.0
hitachienergytxpert_hub_coretec_5_firmware
3.0.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000124&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000125&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000126&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000127&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000128&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000129&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000130&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000131&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000132&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000133&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000124&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000125&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000126&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000127&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000128&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000129&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000130&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000131&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000132&LanguageCode=en&DocumentPartId=&Action=Launch
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000133&LanguageCode=en&DocumentPartId=&Action=Launch