Hitachi Energy ITT600 Explorer
Summary
Hitachi Energy has identified vulnerabilities in specific versions of its ITT600 Explorer product that could allow for Denial of Service (DoS) attacks. These vulnerabilities affect the IEC61850 functionality when used as an IEC61850 server and do not impact system endpoints. Mitigation involves updating to specific patched versions or upgrading when a new version becomes available.
IFF Assessment
The identified vulnerabilities allow for Denial of Service attacks, which negatively impact the availability of critical industrial control systems.
Severity
The CVSS score of 7.5 reflects a High severity rating, indicating that the vulnerabilities are exploitable remotely (though requiring local access in the case of CVE-2024-8176) and can lead to a Denial of Service, impacting the availability of the system.
Defender Context
Defenders should prioritize patching or upgrading the Hitachi Energy ITT600 Explorer to mitigate the risk of DoS attacks, particularly in critical infrastructure environments like the Energy sector. Monitoring for any unusual network activity related to IEC61850 messages could help detect exploitation attempts.