What is CVE-2019-18253?

CVE-2019-18253 is a vulnerability that allows an attacker to read or delete files from Relion 670 Series systems.

What is the severity of CVE-2019-18253?

CVE-2019-18253 has a severity level of critical.

Which software versions are affected by CVE-2019-18253?

CVE-2019-18253 affects Relion 670 Series systems versions 1p1r26, 1.2.3.17, 2.0.0.10, 2.0.0.4, 2.1.0.1, and prior.

How can an attacker exploit CVE-2019-18253?

An attacker can exploit CVE-2019-18253 by using specially crafted paths in a specific request.

How can I protect my Relion 670 Series system from CVE-2019-18253?

To protect your Relion 670 Series system from CVE-2019-18253, ensure that you have installed the latest firmware update provided by Hitachienergy.

Vulnerability/
CVE-2019-18253

critical

CWE

27/11/2019

5/8/2024

CVE-2019-18253: Path Traversal

First published: Wed Nov 27 2019(Updated: )

An attacker could use specially crafted paths in a specific request to read or delete files from Relion 670 Series (versions 1p1r26, 1.2.3.17, 2.0.0.10, RES670 2.0.0.4, 2.1.0.1, and prior) outside the intended directory.

Credit: ics-cert@hq.dhs.gov

Affected Software	Affected Version	How to fix
Hitachienergy Relion 670 Firmware	<1p1r26
Hitachienergy Relion 670 Firmware	>=1.2<1.2.3.17
Hitachienergy Relion 670 Firmware	>=2.0<2.0.0.10
Hitachienergy Relion 670 Firmware	>=2.1<2.1.0.1
Hitachi Energy Relion 670

Never miss a vulnerability like this again

Reference Links

https://www.us-cert.gov/ics/advisories/icsa-19-330-01

Frequently Asked Questions

What is CVE-2019-18253?
CVE-2019-18253 is a vulnerability that allows an attacker to read or delete files from Relion 670 Series systems.
What is the severity of CVE-2019-18253?
CVE-2019-18253 has a severity level of critical.
Which software versions are affected by CVE-2019-18253?
CVE-2019-18253 affects Relion 670 Series systems versions 1p1r26, 1.2.3.17, 2.0.0.10, 2.0.0.4, 2.1.0.1, and prior.
How can an attacker exploit CVE-2019-18253?
An attacker can exploit CVE-2019-18253 by using specially crafted paths in a specific request.
How can I protect my Relion 670 Series system from CVE-2019-18253?
To protect your Relion 670 Series system from CVE-2019-18253, ensure that you have installed the latest firmware update provided by Hitachienergy.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/references
agent/weakness
agent/severity
agent/author
agent/event
agent/first-publish-date
agent/description
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/hitachienergy
canonical/hitachienergy relion 670 firmware
version/hitachienergy relion 670 firmware/1.2
version/hitachienergy relion 670 firmware/2.0
version/hitachienergy relion 670 firmware/2.1
canonical/hitachi energy relion 670

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.