CVE-2021-35531
N/A
N/A
Summary
Improper Input Validation vulnerability in a particular configuration setting field of Hitachi Energy TXpert Hub CoreTec 4 product, allows an attacker with access to an authorized user with ADMIN or ENGINEER role rights to inject an OS command that is executed by the system. This issue affects: Hitachi Energy TXpert Hub CoreTec 4 version 2.0.0; 2.0.1; 2.1.0; 2.1.1; 2.1.2; 2.1.3; 2.2.0; 2.2.1.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Hitachi Energy | TXpert Hub CoreTec 4 version | 2.0.0 | affected |
| Hitachi Energy | TXpert Hub CoreTec 4 version | 2.0.1 | affected |
| Hitachi Energy | TXpert Hub CoreTec 4 version | 2.1.0 | affected |
| Hitachi Energy | TXpert Hub CoreTec 4 version | 2.1.1 | affected |
| Hitachi Energy | TXpert Hub CoreTec 4 version | 2.1.2 | affected |
| Hitachi Energy | TXpert Hub CoreTec 4 version | 2.1.3 | affected |
| Hitachi Energy | TXpert Hub CoreTec 4 version | 2.2.0 | affected |
| Hitachi Energy | TXpert Hub CoreTec 4 version | 2.2.1 | affected |
Weaknesses
- CWE-20: CWE-20 Improper Input Validation
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.