A vulnerability exists in HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-3. After session resumption interval is expired an RTU500 initiated update of session parameters causes an unexpected restart due to a stack overflow.
History

Wed, 25 Sep 2024 01:45:00 +0000


Tue, 24 Sep 2024 15:45:00 +0000


cve-icon MITRE

Status: PUBLISHED

Assigner: Hitachi Energy

Published: 2023-07-26T05:26:42.720Z

Updated: 2024-09-24T15:33:42.351Z

Reserved: 2022-12-19T09:46:30.033Z

Link: CVE-2022-4608

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-07-26T06:15:10.220

Modified: 2024-09-25T01:15:33.067

Link: CVE-2022-4608

cve-icon Redhat

No data.