HIGH🇵🇱 Wersja polska

CVE-2021-40334

CVSS 8.6v3.1pub. 2021-12-02upd. 2024-11-21

Missing Handler vulnerability in the proprietary management protocol (port TCP 5558) of Hitachi Energy FOX61x, XCM20 allows an attacker that exploits the vulnerability by activating SSH on port TCP 5558 to cause disruption to the NMS and NE communication. This issue affects: Hitachi Energy FOX61x versions prior to R15A. Hitachi Energy XCM20 versions prior to R15A.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
  • Hitachienergy Fox615

    HW
    Hitachienergy
    wszystkie wersje
  • Hitachienergy Fox615 Firmware

    OS
    Hitachienergy
    < r15a
  • Hitachienergy Xcm20

    HW
    Hitachienergy
    wszystkie wersje
  • Hitachienergy Xcm20 Firmware

    OS
    Hitachienergy
    < r15a
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2021-40333CRITICAL9.0ten sam produkt

Weak Password Requirements vulnerability in Hitachi Energy FOX61x, XCM20 allows an attacker to gain unauthoriz...

CVE-2024-4872CRITICAL9.9PL ✓ten sam vendor

Injection w walidacji zapytań MicroSCADA Pro/X SYS600 — nieautoryzowany zapis danych

CVE-2024-3980CRITICAL9.9PL ✓ten sam vendor

Path Traversal w MicroSCADA Pro/X SYS600 — dostęp do plików systemowych

CVE-2024-2012CRITICAL9.1PL ✓ten sam vendor

RCE w serwerze/API Gateway Hitachi Energy FOXMAN-UN/UNEM

CVE-2024-2013CRITICAL10.0PL ✓ten sam vendor

Authentication bypass w Hitachi Energy FOXMAN-UN/UNEM — pełny dostęp bez uwierzytelnienia