Hitachi Energy GMS600
Summary
Hitachi Energy's GMS600 industrial control system is affected by CVE-2022-4304, a timing-based side-channel vulnerability in the OpenSSL component. Successful exploitation allows an attacker to potentially decrypt application data by sending a large number of trial messages to the server and analyzing processing times.
IFF Assessment
The identified vulnerability allows for the potential decryption of sensitive application data, posing a significant risk to the confidentiality of communications.
Severity
The CVSS score of 5.9 reflects a medium severity vulnerability (AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N). The attack vector is network-based, requiring a high complexity (requiring many messages and timing analysis), and has no user interaction. The impact is high on confidentiality, as data can be decrypted, but has no impact on integrity or availability.
Defender Context
This vulnerability affects critical infrastructure, specifically the manufacturing sector, and is deployed worldwide. Defenders should prioritize patching or applying mitigations for affected GMS600 systems and monitor for any signs of reconnaissance or exploitation related to timing-based side-channel attacks against OpenSSL implementations.