CVE-2021-40334

EPSS 0.41%
Veröffentlicht 02.12.2021 19:15:08
Zuletzt bearbeitet 21.11.2024 06:23:53
Quelle cybersecurity@hitachienergy.co
Teams Watchlist Login
Unerledigt Login

Missing Handler vulnerability in the proprietary management protocol (port TCP 5558) of Hitachi Energy FOX61x, XCM20 allows an attacker that exploits the vulnerability by activating SSH on port TCP 5558 to cause disruption to the NMS and NE communication. This issue affects: Hitachi Energy FOX61x versions prior to R15A. Hitachi Energy XCM20 versions prior to R15A.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Hitachienergy ≫ Fox615 Firmware Version < r15a

Hitachienergy ≫ Fox615 Version-

Hitachienergy ≫ Xcm20 Firmware Version < r15a

Hitachienergy ≫ Xcm20 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.41%	0.582

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P
cybersecurity@hitachienergy.com	8.6	3.9	4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CWE-431 Missing Handler

A handler is not available or implemented.

https://search.abb.com/library/Download.aspx?DocumentID=8DBD000062&LanguageCode=en&DocumentPartId=&Action=Launch

Vendor Advisory

https://search.abb.com/library/Download.aspx?DocumentID=8DBD000069&LanguageCode=en&DocumentPartId=&Action=Launch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-40334

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-40334

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-40334

EUVD