CVE-2023-5767
6
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:L
Summary
A vulnerability exists in the webserver that affects the RTU500 series product versions listed below. A malicious actor could perform cross-site scripting on the webserver due to an RDT language file being improperly sanitized.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Hitachi Energy | RTU500 | RTU500 series CMU Firmware version 12.0.1 – 12.0.14 | affected |
| Hitachi Energy | RTU500 | RTU500 series CMU Firmware version 12.2.1 – 12.2.11 | affected |
| Hitachi Energy | RTU500 | RTU500 series CMU Firmware version 12.4.1 – 12.4.11 | affected |
| Hitachi Energy | RTU500 | RTU500 series CMU Firmware version 12.6.1 – 12.6.9 | affected |
| Hitachi Energy | RTU500 | RTU500 series CMU Firmware version 12.7.1 – 12.7.6 | affected |
| Hitachi Energy | RTU500 | RTU500 series CMU Firmware version 13.2.1 – 13.2.6 | affected |
| Hitachi Energy | RTU500 | RTU500 series CMU Firmware version 13.4.1 – 13.4.3 | affected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.