Rewterz Threat Advisory – ICS: Measuresoft ScadaPro Server and Client Vulnerabilities
August 25, 2022Rewterz Threat Advisory – CVE-2022-2959 – Linux Kernel Vulnerability
August 25, 2022Rewterz Threat Advisory – ICS: Measuresoft ScadaPro Server and Client Vulnerabilities
August 25, 2022Rewterz Threat Advisory – CVE-2022-2959 – Linux Kernel Vulnerability
August 25, 2022Severity
High
Analysis Summary
CVE-2022-2081
Hitachi Energy RTU500 is vulnerable to a denial of service, caused by a stack-based buffer overflow in the HCI Modbus TCP function. By sending a large number of specially-crafted messages, a remote attacker could exploit this vulnerability to cause the device to reboot.
Impact
- Denial of Service
Indicators Of Compromise
CVE
- CVE-2022-2081
Affected Vendors
Hitachi Energy
Affected Products
- Hitachi RTU500 series CMU firmware 12.0
- Hitachi RTU500 series CMU firmware 12.2
- Hitachi RTU500 series CMU firmware 12.4
Remediation
Refer to CISA-CERT Advisory for the patch, upgrade, or suggested workaround information.
CISA-CERT Advisory