Hitachi Energy FOX61x
Summary
A vulnerability affects Hitachi Energy FOX61x product versions, potentially leading to forgery attacks impacting confidentiality, integrity, and availability if the devices are configured to use remote RADIUS authentication. The vulnerability, CVE-2024-3596, stems from the RADIUS protocol's susceptibility to chosen-prefix collision attacks on the MD5 Response Authenticator signature.
IFF Assessment
A vulnerability exists that can be exploited to compromise critical infrastructure components.
Severity
Defender Context
Defenders need to be aware of CVE-2024-3596 affecting Hitachi Energy FOX61x devices using RADIUS authentication. Mitigation involves enabling the RADIUS Message-Authenticator option, and a vendor fix is available via update to FOX61x R18. The exploitation of vulnerabilities in industrial control systems (ICS) remains a significant threat, often targeting authentication and communication protocols.