A vulnerability exists in HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-3. After session resumption interval is expired an RTU500 initiated update of session parameters causes an unexpected restart due to a stack overflow.
Metrics
Affected Vendors & Products
References
History
Fri, 22 Nov 2024 12:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Wed, 25 Sep 2024 01:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-120 | |
References |
|
Tue, 24 Sep 2024 15:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
MITRE
Status: PUBLISHED
Assigner: Hitachi Energy
Published: 2023-07-26T05:26:42.720Z
Updated: 2024-09-24T15:33:42.351Z
Reserved: 2022-12-19T09:46:30.033Z
Link: CVE-2022-4608
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-07-26T06:15:10.220
Modified: 2024-11-21T07:35:35.383
Link: CVE-2022-4608
Redhat
No data.