IM
IronMonkey Threat Research

CVE-2022-2513 HIGH

Published: 2022-11-22 | Last Modified: 2024-11-21 | Status: Modified

Description

A vulnerability exists in the Intelligent Electronic Device (IED) Connectivity Package (ConnPack) credential storage function in Hitachi Energy’s PCM600 product included in the versions listed below, where IEDs credentials are stored in a cleartext format in the PCM600 database and logs files. An attacker having get access to the exported backup file can exploit the vulnerability and obtain user credentials of the IEDs. Additionally, an attacker with administrator access to the PCM600 host machine can obtain other user credentials by analyzing database log files. The credentials may be used to perform unauthorized modifications such as loading incorrect configurations, reboot the IEDs or cause a denial-of-service on the IEDs.

Additional Descriptions (1)

Existe una vulnerabilidad en Intelligent Electronic Device (IED) Connectivity Package (ConnPack) la función de almacenamiento de credenciales del producto PCM600 de Hitachi Energy incluido en las versiones que se enumeran a continuación, donde las credenciales de los IED se almacenan en un formato de texto plano en la base de datos PCM600. Un atacante que logre acceder al archivo de copia de seguridad exportado puede explotar la vulnerabilidad y obtener las credenciales de los IED. Las credenciales se pueden utilizar para realizar modificaciones no autorizadas, como cargar configuraciones incorrectas, reiniciar los IED o provocar una Denegación de Servicio (DoS) en los IED.

CVSS Metrics

Base Score: 5.5 (MEDIUM)

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Attack VectorLOCAL
Attack ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
ScopeUNCHANGED
Confidentiality ImpactHIGH
Integrity ImpactNONE
Availability ImpactNONE

Source: [email protected]

Type: Primary

Exploitability Score: 1.8

Impact Score: 3.6

Weaknesses

Source Type Description
[email protected] Secondary
en CWE-312
[email protected] Primary
en CWE-312

Affected Products

Vendor Product Version Update Type
hitachienergy 650connectivitypackage 1.3.0 <built-in method update of dict object at 0x72a9cd08d840> Application
hitachienergy 650connectivitypackage 2.1.2 <built-in method update of dict object at 0x72a9cd08d040> Application
hitachienergy 650connectivitypackage 2.2.2 <built-in method update of dict object at 0x72a963c6b500> Application
hitachienergy 650connectivitypackage 2.3.0 <built-in method update of dict object at 0x72a99977a7c0> Application
hitachienergy 650connectivitypackage 2.4.1 <built-in method update of dict object at 0x72a963c69e80> Application
hitachienergy 670connectivitypackage 3.0.2 <built-in method update of dict object at 0x72a963c6bf80> Application
hitachienergy 670connectivitypackage 3.1.2 <built-in method update of dict object at 0x72a963c68680> Application
hitachienergy 670connectivitypackage 3.2.6 <built-in method update of dict object at 0x72a9cd08d540> Application
hitachienergy 670connectivitypackage 3.3.0 <built-in method update of dict object at 0x72a963c69180> Application
hitachienergy 670connectivitypackage 3.4.1 <built-in method update of dict object at 0x72a963c6ba00> Application
hitachienergy gms600connectivitypackage 1.3.0 <built-in method update of dict object at 0x72a99977b1c0> Application
hitachienergy gms600connectivitypackage 1.3.1 <built-in method update of dict object at 0x72a9cd08fd80> Application
hitachienergy pcm600 * <built-in method update of dict object at 0x72a963c68600> Application
hitachienergy pwc600connectivitypackage 1.1.0 <built-in method update of dict object at 0x72a999778400> Application
hitachienergy pwc600connectivitypackage 1.1.1 <built-in method update of dict object at 0x72a9cd08f580> Application
hitachienergy pwc600connectivitypackage 1.1.2 <built-in method update of dict object at 0x72a963c69880> Application
hitachienergy pwc600connectivitypackage 1.2.0 <built-in method update of dict object at 0x72a9cd08c100> Application
hitachienergy pwc600connectivitypackage 1.3.0 <built-in method update of dict object at 0x72a999778bc0> Application
hitachienergy sam600ioconnectivitypackage 1.0.0 <built-in method update of dict object at 0x72a9cd08f240> Application
hitachienergy sam600ioconnectivitypackage 1.1.0 <built-in method update of dict object at 0x72a999779e40> Application
hitachienergy sam600ioconnectivitypackage 1.2.0 <built-in method update of dict object at 0x72a963c6bbc0> Application

Affected Configurations

Operator: OR

Vulnerable CPE
Yes cpe:2.3:a:hitachienergy:650connectivitypackage:1.3.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:650connectivitypackage:2.1.2:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:650connectivitypackage:2.2.2:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:650connectivitypackage:2.3.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:650connectivitypackage:2.4.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:670connectivitypackage:3.0.2:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:670connectivitypackage:3.1.2:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:670connectivitypackage:3.2.6:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:670connectivitypackage:3.3.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:670connectivitypackage:3.4.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:gms600connectivitypackage:1.3.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:gms600connectivitypackage:1.3.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:pcm600:*:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:pwc600connectivitypackage:1.1.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:pwc600connectivitypackage:1.1.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:pwc600connectivitypackage:1.1.2:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:pwc600connectivitypackage:1.2.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:pwc600connectivitypackage:1.3.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:sam600ioconnectivitypackage:1.0.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:sam600ioconnectivitypackage:1.1.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:hitachienergy:sam600ioconnectivitypackage:1.2.0:*:*:*:*:*:*:*

References

Notification
Message here