MEDIUM✓ PATCH🇬🇧 English

CVE-2021-35526

CVSS 6.3v3.1pub. 2021-09-08upd. 2024-11-21

Backup file without encryption vulnerability is found in Hitachi ABB Power Grids System Data Manager – SDM600 allows attacker to gain access to sensitive information. This issue affects: Hitachi ABB Power Grids System Data Manager – SDM600 1.2 versions prior to FP2 HF6 (Build Nr. 1.2.14002.257).

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
  • Hitachiabb Powergrids Sdm600 Firmware

    OS
    Hitachiabb-Powergrids
    1.2 – 1.2.14002.257 (bez)
  • Hitachienergy Sdm600

    HW
    Hitachienergy
    wszystkie wersje
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2022-3682CRITICAL9.9ten sam produkt

A vulnerability exists in the SDM600 file permission validation. An attacker could exploit the vulnerability ...

CVE-2022-3683HIGH7.7ten sam produkt

A vulnerability exists in the SDM600 API web services authorization validation implementation. An attacker wh...

CVE-2022-3684HIGH7.5ten sam produkt

A vulnerability exists in a SDM600 endpoint. An attacker could exploit this vulnerability by running multiple ...

CVE-2022-3685HIGH7.5ten sam produkt

A vulnerability exists in the SDM600 software. The software operates at a privilege level that is higher than...

CVE-2022-3686MEDIUM4.8ten sam produkt

A vulnerability exists in a SDM600 endpoint. An attacker could exploit this vulnerability by running multiple ...