CVE-2022-3864

Summary

A vulnerability exists in the Relion update package signature validation. A tampered update package could cause the IED to restart. After restart the device is back to normal operation. An attacker could exploit the vulnerability by first gaining access to the system with security privileges and attempt to update the IED with a malicious update package. Successful exploitation of this vulnerability will cause the IED to restart, causing a temporary Denial of Service.

Affected Software

VendorProductVersion RangeStatus
Hitachi EnergyRelion 670/650/SAM600-IO SeriesRelion 670/650 series version 2.2.0 all revisionsaffected
Hitachi EnergyRelion 670/650/SAM600-IO SeriesRelion 670/650/SAM600-IO series version 2.2.1 all revisionsaffected
Hitachi EnergyRelion 670/650/SAM600-IO SeriesRelion 670 series version 2.2.2 all revisionsaffected
Hitachi EnergyRelion 670/650/SAM600-IO SeriesRelion 670 series version 2.2.3 all revisionsaffected
Hitachi EnergyRelion 670/650/SAM600-IO SeriesRelion 670/650 series version 2.2.4 all revisionsaffected
Hitachi EnergyRelion 670/650/SAM600-IO SeriesRelion 670/650 series version 2.2.5 all revisionsaffected

Weaknesses

  • CWE-347: CWE-347 Improper Verification of Cryptographic Signature

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References