CVE-2022-2081

Name of the Vulnerable Software and Affected Versions Hitachi Energy RTU500 versions (affected versions not specified)

Description The issue is related to a vulnerability in the HCI interface, functioning via the Modbus TCP protocol, which can cause a buffer overflow in memory. This can be exploited by an attacker to cause a denial of service or reboot the device. The vulnerability is caused by a lack of flood control, leading to an internal stack overflow in the HCI Modbus TCP function when a specially crafted message is sent at a high rate.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.