CVE-2021-22283
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
Improper Initialization vulnerability in ABB Relion protection relays - 611 series, ABB Relion protection relays - 615 series IEC 4.0 FP1, ABB Relion protection relays - 615 series CN 4.0 FP1, ABB Relion protection relays - 615 series IEC 5.0, ABB Relion protection relays - 615 series IEC 5.0 FP1, ABB Relion protection relays - 620 series IEC/CN 2.0, ABB Relion protection relays - 620 series IEC/CN 2.0 FP1, ABB Relion protection relays - REX640 PCL1, ABB Relion protection relays - REX640 PCL2, ABB Relion protection relays - REX640 PCL3, ABB Relion protection relays - RER615, ABB Remote Monitoring and Control - REC615, ABB Merging Unit- SMU615 allows Communication Channel Manipulation.This issue affects Relion protection relays - 611 series: from 1.0.0 before 2.0.3; Relion protection relays - 615 series IEC 4.0 FP1: from 4.1.0 before 4.1.9; Relion protection relays - 615 series CN 4.0 FP1: from 4.1.0 before 4.1.8; Relion protection relays - 615 series IEC 5.0: from 5.0.0 before 5.0.12; Relion protection relays - 615 series IEC 5.0 FP1: from 5.1.0 before 5.1.20; Relion protection relays - 620 series IEC/CN 2.0: from 2.0.0 before 2.0.11; Relion protection relays - 620 series IEC/CN 2.0 FP1: from 2.1.0 before 2.1.15; Relion protection relays - REX640 PCL1: from 1.0.0 before 1.0.8; Relion protection relays - REX640 PCL2: from 1.1.0 before 1.1.4; Relion protection relays - REX640 PCL3: from 1.2.0 before 1.2.1; Relion protection relays - RER615: from 2.0.0 before 2.0.3; Remote Monitoring and Control - REC615: from 1.0.0 before 2.0.3; Merging Unit- SMU615: from 1.0.0 before 1.0.2.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| ABB | Relion protection relays - 611 series | 1.0.0 < 2.0.3 | affected |
| ABB | Relion protection relays - 615 series IEC 4.0 FP1 | 4.1.0 < 4.1.9 | affected |
| ABB | Relion protection relays - 615 series CN 4.0 FP1 | 4.1.0 < 4.1.8 | affected |
| ABB | Relion protection relays - 615 series IEC 5.0 | 5.0.0 < 5.0.12 | affected |
| ABB | Relion protection relays - 615 series IEC 5.0 FP1 | 5.1.0 < 5.1.20 | affected |
| ABB | Relion protection relays - 620 series IEC/CN 2.0 | 2.0.0 < 2.0.11 | affected |
| ABB | Relion protection relays - 620 series IEC/CN 2.0 FP1 | 2.1.0 < 2.1.15 | affected |
| ABB | Relion protection relays - REX640 PCL1 | 1.0.0 < 1.0.8 | affected |
| ABB | Relion protection relays - REX640 PCL2 | 1.1.0 < 1.1.4 | affected |
| ABB | Relion protection relays - REX640 PCL3 | 1.2.0 < 1.2.1 | affected |
| ABB | Relion protection relays - RER615 | 2.0.0 < 2.0.3 | affected |
| ABB | Remote Monitoring and Control - REC615 | 1.0.0 < 2.0.3 | affected |
| ABB | Merging Unit- SMU615 | 1.0.0 < 1.0.2 | affected |
Weaknesses
- CWE-665: CWE-665 Improper Initialization
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.