Rewterz Threat Advisory – ICS: Multiple Hitachi EH-VIEW Vulnerabilities

Severity

High

Analysis Summary

CVE-2023-3495 CVSS:7.8

Hitachi EH-VIEW could allow a remote attacker to execute arbitrary code on the system, caused by out-of-bounds write vulnerability within the parsing of KBD files. By persuading a victim to open a specially crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the system.

CVE-2023-39984 CVSS:7.8

Hitachi EH-VIEW is vulnerable to a buffer overflow, caused by improper bounds checking within the parsing of KBD files. By persuading a victim to open a specially crafted file, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash.

CVE-2023-39985 CVSS:7.8

Hitachi EH-VIEW could allow a remote attacker to execute arbitrary code on the system, caused by out-of-bounds write vulnerability within the parsing of UPR files. By persuading a victim to open a specially crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the system.

CVE-2023-39986 CVSS:7.8

Hitachi EH-VIEW could allow a remote attacker to execute arbitrary code on the system, caused by out-of-bounds read vulnerability within the parsing of UPR files. By persuading a victim to open a specially crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the system.

Impact

• Code Execution
• Buffer Overflow

Indicators Of Compromise

CVE

• CVE-2023-3495
• CVE-2023-39984
• CVE-2023-39985
• CVE-2023-39986

Affected Vendors

Hitachi

Affected Products

• Hitachi EH-VIEW

Remediation

Refer to Hitachi Security Advisory for patch, upgrade or suggested workaround information.

Hitachi Security Advisory