CVE-2022-3682

Name of the Vulnerable Software and Affected Versions Hitachi Energy System Data Manager SDM600 versions prior to 1.2 FP3 HF4 (Build Nr. 1.2.23000.291)

Description A vulnerability exists in the SDM600 file permission validation, allowing an attacker to exploit the system by uploading a specially crafted message, potentially resulting in arbitrary code execution. This issue affects all SDM600 versions prior to version 1.2 FP3 HF4.

Recommendations For SDM600 versions prior to 1.2 FP3 HF4 (Build Nr. 1.2.23000.291), update to version 1.2 FP3 HF4 or later to resolve the issue. At the moment, there is no information about other versions that contain a fix for this vulnerability.