CVE-2023-5768

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Dec 4, 2023

Updated: Dec 7, 2023

CWE ID 79

Summary

CVE-2023-5768 is a vulnerability affecting the HCI IEC 60870-5-104 communication protocol in the RTU500 series products. Incomplete or incorrectly formatted Advanced Program-to-Device (APDU) frames can cause blocking on the link layer. This results in endless blocking when reading incoming frames with incorrect length information or delayed data octets. The communication link is the only component affected, and once the attack sequence is stopped, the previously blocked link resumes normal function.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Hitachi Energy

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tIwVNJ
https://www.cve.org/CVERecord?id=CVE-2023-5768
https://nvd.nist.gov/vuln/detail/CVE-2023-5768

Back to Vulnerability Database

CVE-2023-5768

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations