Hitachi Energy PCM600
Summary
Hitachi Energy is acknowledging a vulnerability affecting its PCM600 product. This vulnerability, specifically CVE-2018-1002208 (Zip-Slip), allows attackers to write to arbitrary files via directory traversal in Zip archives. Exploiting this can impact the integrity of the product, and currently, no direct mitigations are available.
IFF Assessment
The article describes a vulnerability that can be exploited by attackers to impact the integrity of an industrial control system product, which is bad news for defenders.
Severity
The CVSS score of 4.4 indicates a moderate severity vulnerability. The 'Path Traversal' vulnerability allows attackers to potentially write to restricted directories, impacting the integrity of the product, but it likely requires a user to interact with a malicious archive for exploitation.
Defender Context
Defenders should be aware of this path traversal vulnerability affecting Hitachi Energy's PCM600 product, especially in critical infrastructure sectors like energy. Given that no direct remediation is available, focusing on network segmentation, access controls, and vigilant monitoring for any signs of compromise on systems running affected versions is crucial. Organizations should also prioritize upgrading to patched versions as soon as they become available.