CVE-2023-4518
Published: Dec 1, 2023
Modified: Sep 23, 2024
CVSS v3.1
6.5
Description
A vulnerability exists in the input validation of the GOOSE messages where out of range values received and processed by the IED caused a reboot of the device. In order for an attacker to exploit the vulnerability, goose receiving blocks need to be configured.
| Vendor | Product | Versions |
|---|---|---|
Hitachi Energy | Relion670 | affected Relion 670 series version 2.2.0 all revisionsaffected Relion 670/650/SAM600-IO series version 2.2.1 all revisionsaffected elion 670 series version 2.2.2 all revisionsaffected Relion 670 series version 2.2.3 all revisionsaffected Relion 670/650 series version 2.2.4 all revisions+1 more versions |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now