CVE-2023-6711
MEDIUMHitachienergy Rtu500 Firmware < 12.0.15.0 - Buffer Overflow
Title source: ruleDescription
Vulnerability exists in SCI IEC 60870-5-104 and HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Specially crafted messages sent to the mentioned components are not validated properly and can result in buffer overflow and as final consequence to a reboot of an RTU500 CMU.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000184&languageCode=en&Preview=true
Scores
CVSS v3
5.9
EPSS
0.0018
EPSS Percentile
39.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-120
Status
published
Products (2)
hitachienergy/rtu500_firmware
13.5.1.0
hitachienergy/rtu500_firmware
12.0.1.0 - 12.0.15.0
Published
Dec 19, 2023
Tracked Since
Feb 18, 2026