Hitachi Energy RTU500 Restart Vulnerability in IEC 60870-5-104 and IEC 61850 Functions

Vulnerability

A vulnerability in the RTU500 series exists within the IEC 60870-5-104 controlled station and IEC 61850 functionalities. When secure communication via IEC 62351-3 (TLS) is enabled, an attacker can execute a specific sequence of actions to restart the affected Communication Management Unit (CMU).

Impact

Exploitation of this vulnerability leads to an unauthorized restart of the affected CMU, disrupting any ongoing processes or communications managed by the unit.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

0.6

exploitability

5.9

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

0.6

exploitability

5.9

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Hitachi Energy RTU500 Restart Vulnerability in IEC 60870-5-104 and IEC 61850 Functions

Vulnerability

Impact

Affected Products

Hitachi Energy RTU500

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating