A vulnerability exists in the webserver that affects the RTU500 series product versions listed below. A malicious actor could perform cross-site scripting on the webserver due to an RDT language file being improperly sanitized.
Existe una vulnerabilidad en el servidor web que afecta a las versiones de productos RTU500 series que se enumeran a continuación. Un actor malintencionado podrÃa realizar cross-site scripting en el servidor web debido a que un archivo de idioma RDT no se ha sanitizado incorrectamente.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
| Attack Vector | NETWORK |
|---|---|
| Attack Complexity | LOW |
| Privileges Required | NONE |
| User Interaction | REQUIRED |
| Scope | CHANGED |
| Confidentiality Impact | LOW |
| Integrity Impact | LOW |
| Availability Impact | NONE |
| Source | Type | Description |
|---|---|---|
| [email protected] | Primary |
en
CWE-79
|
| Vendor | Product | Version | Update | Type |
|---|---|---|---|---|
| hitachienergy | rtu520_firmware | * | <built-in method update of dict object at 0x72a9cdf16580> | Operating System |
| hitachienergy | rtu520_firmware | * | <built-in method update of dict object at 0x72a9cc6467c0> | Operating System |
| hitachienergy | rtu520_firmware | * | <built-in method update of dict object at 0x72a9cc645280> | Operating System |
| hitachienergy | rtu520_firmware | * | <built-in method update of dict object at 0x72a9cc46fa80> | Operating System |
| hitachienergy | rtu520_firmware | * | <built-in method update of dict object at 0x72a9cdf14840> | Operating System |
| hitachienergy | rtu520_firmware | * | <built-in method update of dict object at 0x72a9cdf149c0> | Operating System |
| hitachienergy | rtu520_firmware | * | <built-in method update of dict object at 0x72a9cdf17b40> | Operating System |
| hitachienergy | rtu530_firmware | * | <built-in method update of dict object at 0x72a9cc76f680> | Operating System |
| hitachienergy | rtu530_firmware | * | <built-in method update of dict object at 0x72a9cc645240> | Operating System |
| hitachienergy | rtu530_firmware | * | <built-in method update of dict object at 0x72a9cdf14740> | Operating System |
| hitachienergy | rtu530_firmware | * | <built-in method update of dict object at 0x72a9cc645400> | Operating System |
| hitachienergy | rtu530_firmware | * | <built-in method update of dict object at 0x72a9cdf16b00> | Operating System |
| hitachienergy | rtu530_firmware | * | <built-in method update of dict object at 0x72a9cc48f6c0> | Operating System |
| hitachienergy | rtu530_firmware | * | <built-in method update of dict object at 0x72a9cdf168c0> | Operating System |
| hitachienergy | rtu540_firmware | * | <built-in method update of dict object at 0x72a9cc76d680> | Operating System |
| hitachienergy | rtu540_firmware | * | <built-in method update of dict object at 0x72a9cdf14a40> | Operating System |
| hitachienergy | rtu540_firmware | * | <built-in method update of dict object at 0x72a9cc76f080> | Operating System |
| hitachienergy | rtu540_firmware | * | <built-in method update of dict object at 0x72a9e41281c0> | Operating System |
| hitachienergy | rtu540_firmware | * | <built-in method update of dict object at 0x72a9cc782240> | Operating System |
| hitachienergy | rtu540_firmware | * | <built-in method update of dict object at 0x72a9eaf5fd80> | Operating System |
| hitachienergy | rtu540_firmware | * | <built-in method update of dict object at 0x72a9cdf15d40> | Operating System |
| hitachienergy | rtu560_firmware | * | <built-in method update of dict object at 0x72a9cdf16c40> | Operating System |
| hitachienergy | rtu560_firmware | * | <built-in method update of dict object at 0x72a9b0c34a00> | Operating System |
| hitachienergy | rtu560_firmware | * | <built-in method update of dict object at 0x72a9cdf17ac0> | Operating System |
| hitachienergy | rtu560_firmware | * | <built-in method update of dict object at 0x72a9cc46da40> | Operating System |
| hitachienergy | rtu560_firmware | * | <built-in method update of dict object at 0x72a9cc645740> | Operating System |
| hitachienergy | rtu560_firmware | * | <built-in method update of dict object at 0x72a9cdf16900> | Operating System |
| hitachienergy | rtu560_firmware | * | <built-in method update of dict object at 0x72a9cdf16cc0> | Operating System |
| Vulnerable | CPE |
|---|---|
| Yes | cpe:2.3:o:hitachienergy:rtu520_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu520_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu520_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu520_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu520_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu520_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu520_firmware:*:*:*:*:*:*:*:* |
| Vulnerable | CPE |
|---|---|
| No | cpe:2.3:h:hitachienergy:rtu520:-:*:*:*:*:*:*:* |
| Vulnerable | CPE |
|---|---|
| Yes | cpe:2.3:o:hitachienergy:rtu530_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu530_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu530_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu530_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu530_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu530_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu530_firmware:*:*:*:*:*:*:*:* |
| Vulnerable | CPE |
|---|---|
| No | cpe:2.3:h:hitachienergy:rtu530:-:*:*:*:*:*:*:* |
| Vulnerable | CPE |
|---|---|
| Yes | cpe:2.3:o:hitachienergy:rtu540_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu540_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu540_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu540_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu540_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu540_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu540_firmware:*:*:*:*:*:*:*:* |
| Vulnerable | CPE |
|---|---|
| No | cpe:2.3:h:hitachienergy:rtu540:-:*:*:*:*:*:*:* |
| Vulnerable | CPE |
|---|---|
| Yes | cpe:2.3:o:hitachienergy:rtu560_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu560_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu560_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu560_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu560_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu560_firmware:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:hitachienergy:rtu560_firmware:*:*:*:*:*:*:*:* |
| Vulnerable | CPE |
|---|---|
| No | cpe:2.3:h:hitachienergy:rtu560:-:*:*:*:*:*:*:* |