mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
645 lines
40 KiB
JSON
645 lines
40 KiB
JSON
{
|
|
"data_version": "4.0",
|
|
"data_type": "CVE",
|
|
"data_format": "MITRE",
|
|
"CVE_data_meta": {
|
|
"ID": "CVE-2022-3353",
|
|
"ASSIGNER": "cybersecurity@hitachienergy.com",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "A vulnerability exists in the IEC 61850 communication stack that affects multiple Hitachi Energy products. An attacker could exploit the vulnerability by using a specially crafted message sequence, to force the IEC 61850 MMS-server communication stack, to stop accepting new MMS-client connections. Already existing/established client-server connections are not affected. List of affected CPEs: * cpe:2.3:o:hitachienergy:fox61x_tego1:r15b08:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:fox61x_tego1:r2a16_3:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:fox61x_tego1:r2a16:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:fox61x_tego1:r1e01:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:fox61x_tego1:r1d02:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:fox61x_tego1:r1c07:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:fox61x_tego1:r1b02:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:gms600:1.3.0:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.1.*:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.5.*:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.6.0:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.6.0.1:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.7.0:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.7.2:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:1.8.0:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:2.0.*:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:2.1.0.4:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:itt600_sa_explorer:2.1.0.5:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10.*:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10.2:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10.2.1:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10.3:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10.3.1:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10.4:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:microscada_x_sys600:10.4.1:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:mms:2.2.3:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:pwc600:1.0:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:pwc600:1.1:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:pwc600:1.2:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:reb500:7:*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:reb500:8:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion670:1.2.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion670:2.0.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion650:1.1.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion650:1.3.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion650:2.1.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion670:2.1.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relionSAM600-IO:2.2.1:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relionSAM600-IO:2.2.5:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion670:2.2.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:relion650:2.2.*:*:*:*:*:*:*:* * cpe:2.3:o:hitachienergy:rtu500cmu:12.*.*:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:rtu500cmu:13.*.*:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:txpert_hub_coretec_4:2.*:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:txpert_hub_coretec_4:3.0:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:txpert_hub_coretec_5:3.0:*:*:*:*:*:*:*"
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "CWE-404 Improper Resource Shutdown or Release",
|
|
"cweId": "CWE-404"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"vendor_name": "Hitachi Energy",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "FOX61x TEGO1",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "not down converted",
|
|
"x_cve_json_5_version_data": {
|
|
"versions": [
|
|
{
|
|
"status": "unaffected",
|
|
"version": "tego1_r16a11"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "tego1_r15b08"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "tego1_r2a16_03"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "tego1_r2a16"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "tego1_r1e01"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "tego1_r1d02"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "tego1_r1c07"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "tego1_r1b02"
|
|
}
|
|
],
|
|
"defaultStatus": "unaffected"
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "GMS600",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "GMS600 1.3"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "ITT600 SA Explorer",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "not down converted",
|
|
"x_cve_json_5_version_data": {
|
|
"versions": [
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 1.1.0"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 1.1.1"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 1.1.2"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 1.5.0"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 1.5.1"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 1.6.0"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 1.6.0.1"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 1.7.0"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 1.7.2"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 1.8.0"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 2.0.1"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 2.0.2"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 2.0.3"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 2.0.4.1"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 2.0.5.0"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 2.0.5.4"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 2.1.0.4"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "ITT600 SA Explorer 2.1.0.5"
|
|
},
|
|
{
|
|
"status": "unaffected",
|
|
"version": "ITT600 SA Explorer 2.1.1.2"
|
|
}
|
|
],
|
|
"defaultStatus": "unaffected"
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "MicroSCADA X SYS600",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "not down converted",
|
|
"x_cve_json_5_version_data": {
|
|
"versions": [
|
|
{
|
|
"status": "affected",
|
|
"version": "SYS600 10"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "SYS600 10.1"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "SYS600 10.1.1"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "SYS600 10.2"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "SYS600 10.2.1"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "SYS600 10.3"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "SYS600 10.3.1"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "SYS600 10.4"
|
|
},
|
|
{
|
|
"status": "unaffected",
|
|
"version": "SYS600 10.4.1"
|
|
}
|
|
],
|
|
"defaultStatus": "unaffected"
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "MSM",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "MSM 2.2.3;0"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "PWC600",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "PWC600 1.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "PWC600 1.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "PWC600 1.2"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "REB500",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "not down converted",
|
|
"x_cve_json_5_version_data": {
|
|
"versions": [
|
|
{
|
|
"lessThan": "7.*",
|
|
"status": "affected",
|
|
"version": "REB500 7.0",
|
|
"versionType": "7.*"
|
|
},
|
|
{
|
|
"lessThan": "8.*",
|
|
"status": "affected",
|
|
"version": "REB500 8.0",
|
|
"versionType": "8.*"
|
|
},
|
|
{
|
|
"status": "unaffected",
|
|
"version": "REB500 8.3.3.0"
|
|
}
|
|
],
|
|
"defaultStatus": "unaffected"
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "Relion\u00ae 670",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 670 1.2"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 670 2.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 670 version 2.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 670 2.2.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 670 2.2.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 670 2.2.2"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 670 2.2.3"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 670 2.2.4"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 670 2.2.5"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "Relion\u00ae 650",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 650 1.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 650 1.3"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 650 2.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 650 2.2.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 650 2.2.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 650 2.2.2"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 650 2.2.3"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 650 2.2.4"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion 650 2.2.5"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "SAM600-IO",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion SAM600-IO 2.2.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Relion SAM600-IO 2.2.5"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "RTU500",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "not down converted",
|
|
"x_cve_json_5_version_data": {
|
|
"versions": [
|
|
{
|
|
"lessThanOrEqual": "12.0.14",
|
|
"status": "affected",
|
|
"version": "RTU500 12.0.1",
|
|
"versionType": "12.0.14"
|
|
},
|
|
{
|
|
"status": "unaffected",
|
|
"version": "RTU500 12.0.15"
|
|
},
|
|
{
|
|
"lessThanOrEqual": "12.2.11",
|
|
"status": "affected",
|
|
"version": "RTU500 12.2.1",
|
|
"versionType": "12.2.11"
|
|
},
|
|
{
|
|
"status": "unaffected",
|
|
"version": "RTU500 12.2.12"
|
|
},
|
|
{
|
|
"lessThanOrEqual": "12.4.11",
|
|
"status": "affected",
|
|
"version": "RTU500 12.4.1",
|
|
"versionType": "12.4.11"
|
|
},
|
|
{
|
|
"status": "unaffected",
|
|
"version": "RTU500 12.4.12"
|
|
},
|
|
{
|
|
"lessThanOrEqual": "12.6.8",
|
|
"status": "affected",
|
|
"version": "RTU500 12.6.1",
|
|
"versionType": "12.6.8"
|
|
},
|
|
{
|
|
"status": "unaffected",
|
|
"version": "RTU500 12.6.9"
|
|
},
|
|
{
|
|
"lessThanOrEqual": "12.7.4",
|
|
"status": "affected",
|
|
"version": "RTU500 12.7.1",
|
|
"versionType": "12.7.4"
|
|
},
|
|
{
|
|
"status": "unaffected",
|
|
"version": "RTU500 12.7.5"
|
|
},
|
|
{
|
|
"lessThanOrEqual": "13.2.5",
|
|
"status": "affected",
|
|
"version": "RTU500 13.2.1",
|
|
"versionType": "13.2.5"
|
|
},
|
|
{
|
|
"status": "unaffected",
|
|
"version": "RTU500 13.2.6"
|
|
},
|
|
{
|
|
"lessThanOrEqual": "13.3.3",
|
|
"status": "affected",
|
|
"version": "RTU500 13.3.1",
|
|
"versionType": "13.3.3"
|
|
},
|
|
{
|
|
"status": "unaffected",
|
|
"version": "RTU500 13.3.4"
|
|
},
|
|
{
|
|
"status": "affected",
|
|
"version": "RTU500 13.4.1"
|
|
},
|
|
{
|
|
"status": "unaffected",
|
|
"version": "RTU500 13.4.2"
|
|
}
|
|
],
|
|
"defaultStatus": "unaffected"
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "TXpert Hub CoreTec 4",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "CoreTec 4 version 2.0.*"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "CoreTec 4 version 2.1.*"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "CoreTec 4 version 2.2.*"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "CoreTec 4 version 2.3.*"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "CoreTec 4 version 2.4.*"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "CoreTec 4 version 3.0.*"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "TXpert Hub CoreTec 5",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "CoreTec 5 version 3.0.*"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000125&LanguageCode=en&DocumentPartId=&Action=Launch",
|
|
"refsource": "MISC",
|
|
"name": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000125&LanguageCode=en&DocumentPartId=&Action=Launch"
|
|
},
|
|
{
|
|
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000126&LanguageCode=en&DocumentPartId=&Action=Launch",
|
|
"refsource": "MISC",
|
|
"name": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000126&LanguageCode=en&DocumentPartId=&Action=Launch"
|
|
},
|
|
{
|
|
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000128&LanguageCode=en&DocumentPartId=&Action=Launch",
|
|
"refsource": "MISC",
|
|
"name": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000128&LanguageCode=en&DocumentPartId=&Action=Launch"
|
|
},
|
|
{
|
|
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000133&LanguageCode=en&DocumentPartId=&Action=Launch",
|
|
"refsource": "MISC",
|
|
"name": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000133&LanguageCode=en&DocumentPartId=&Action=Launch"
|
|
},
|
|
{
|
|
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000129&LanguageCode=en&DocumentPartId=&Action=Launch",
|
|
"refsource": "MISC",
|
|
"name": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000129&LanguageCode=en&DocumentPartId=&Action=Launch"
|
|
},
|
|
{
|
|
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000130&LanguageCode=en&DocumentPartId=&Action=Launch",
|
|
"refsource": "MISC",
|
|
"name": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000130&LanguageCode=en&DocumentPartId=&Action=Launch"
|
|
},
|
|
{
|
|
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000131&LanguageCode=en&DocumentPartId=&Action=Launch",
|
|
"refsource": "MISC",
|
|
"name": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000131&LanguageCode=en&DocumentPartId=&Action=Launch"
|
|
},
|
|
{
|
|
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000127&LanguageCode=en&DocumentPartId=&Action=Launch",
|
|
"refsource": "MISC",
|
|
"name": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000127&LanguageCode=en&DocumentPartId=&Action=Launch"
|
|
},
|
|
{
|
|
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000132&LanguageCode=en&DocumentPartId=&Action=Launch",
|
|
"refsource": "MISC",
|
|
"name": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000132&LanguageCode=en&DocumentPartId=&Action=Launch"
|
|
},
|
|
{
|
|
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000124&LanguageCode=en&DocumentPartId=&Action=Launch",
|
|
"refsource": "MISC",
|
|
"name": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000124&LanguageCode=en&DocumentPartId=&Action=Launch"
|
|
}
|
|
]
|
|
},
|
|
"generator": {
|
|
"engine": "Vulnogram 0.1.0-dev"
|
|
},
|
|
"source": {
|
|
"discovery": "INTERNAL"
|
|
},
|
|
"work_around": [
|
|
{
|
|
"lang": "en",
|
|
"supportingMedia": [
|
|
{
|
|
"base64": false,
|
|
"type": "text/html",
|
|
"value": "\n\nRecommended security practices and firewall configurations can help protect a process control network from \nattacks that originate from outside the network. Such practices include that process control systems are physically protected from direct access by unauthorized personnel, have no direct connections to the Internet, and \nare separated from other networks by means of a firewall system that has a minimal number of ports exposed, \nand others that have to be evaluated case by case. Process control systems should not be used for Internet \nsurfing, instant messaging, or receiving e-mails. Portable computers and removable storage media should be \ncarefully scanned for viruses before they are connected to a control system.\n\n<br>"
|
|
}
|
|
],
|
|
"value": "\nRecommended security practices and firewall configurations can help protect a process control network from \nattacks that originate from outside the network. Such practices include that process control systems are physically protected from direct access by unauthorized personnel, have no direct connections to the Internet, and \nare separated from other networks by means of a firewall system that has a minimal number of ports exposed, \nand others that have to be evaluated case by case. Process control systems should not be used for Internet \nsurfing, instant messaging, or receiving e-mails. Portable computers and removable storage media should be \ncarefully scanned for viruses before they are connected to a control system.\n\n\n"
|
|
}
|
|
],
|
|
"solution": [
|
|
{
|
|
"lang": "en",
|
|
"supportingMedia": [
|
|
{
|
|
"base64": false,
|
|
"type": "text/html",
|
|
"value": "\n\nUpgrade the system once remediated version is available.\n\n\n<br>"
|
|
}
|
|
],
|
|
"value": "\nUpgrade the system once remediated version is available.\n\n\n\n"
|
|
}
|
|
],
|
|
"impact": {
|
|
"cvss": [
|
|
{
|
|
"attackComplexity": "HIGH",
|
|
"attackVector": "NETWORK",
|
|
"availabilityImpact": "HIGH",
|
|
"baseScore": 5.9,
|
|
"baseSeverity": "MEDIUM",
|
|
"confidentialityImpact": "NONE",
|
|
"integrityImpact": "NONE",
|
|
"privilegesRequired": "NONE",
|
|
"scope": "UNCHANGED",
|
|
"userInteraction": "NONE",
|
|
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
|
|
"version": "3.1"
|
|
}
|
|
]
|
|
}
|
|
} |