What is CVE-2019-18253?

CVE-2019-18253 is a vulnerability that allows an attacker to read or delete files from Relion 670 Series systems.

What is the severity of CVE-2019-18253?

CVE-2019-18253 has a severity level of critical.

Which software versions are affected by CVE-2019-18253?

CVE-2019-18253 affects Relion 670 Series systems versions 1p1r26, 1.2.3.17, 2.0.0.10, 2.0.0.4, 2.1.0.1, and prior.

How can an attacker exploit CVE-2019-18253?

An attacker can exploit CVE-2019-18253 by using specially crafted paths in a specific request.

How can I protect my Relion 670 Series system from CVE-2019-18253?

To protect your Relion 670 Series system from CVE-2019-18253, ensure that you have installed the latest firmware update provided by Hitachienergy.

Vulnerability/
CVE-2019-18253

critical

CWE

27/11/2019

5/8/2024

CVE-2019-18253: Path Traversal

First published: Wed Nov 27 2019(Updated: )

An attacker could use specially crafted paths in a specific request to read or delete files from Relion 670 Series (versions 1p1r26, 1.2.3.17, 2.0.0.10, RES670 2.0.0.4, 2.1.0.1, and prior) outside the intended directory.

Credit: ics-cert@hq.dhs.gov

Affected Software	Affected Version	How to fix
Hitachienergy Relion 670 Firmware	<1p1r26
Hitachienergy Relion 670 Firmware	>=1.2<1.2.3.17
Hitachienergy Relion 670 Firmware	>=2.0<2.0.0.10
Hitachienergy Relion 670 Firmware	>=2.1<2.1.0.1
Hitachienergy Relion 670

Never miss a vulnerability like this again

Reference Links

https://www.us-cert.gov/ics/advisories/icsa-19-330-01

Frequently Asked Questions

What is CVE-2019-18253?
CVE-2019-18253 is a vulnerability that allows an attacker to read or delete files from Relion 670 Series systems.
What is the severity of CVE-2019-18253?
CVE-2019-18253 has a severity level of critical.
Which software versions are affected by CVE-2019-18253?
CVE-2019-18253 affects Relion 670 Series systems versions 1p1r26, 1.2.3.17, 2.0.0.10, 2.0.0.4, 2.1.0.1, and prior.
How can an attacker exploit CVE-2019-18253?
An attacker can exploit CVE-2019-18253 by using specially crafted paths in a specific request.
How can I protect my Relion 670 Series system from CVE-2019-18253?
To protect your Relion 670 Series system from CVE-2019-18253, ensure that you have installed the latest firmware update provided by Hitachienergy.

collector/nvd-index
agent/severity
agent/weakness
agent/author
agent/references
agent/type
agent/description
agent/event
agent/first-publish-date
agent/softwarecombine
agent/last-modified-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/hitachienergy
canonical/hitachienergy relion 670 firmware
version/hitachienergy relion 670 firmware/1.2
version/hitachienergy relion 670 firmware/2.0
version/hitachienergy relion 670 firmware/2.1
canonical/hitachienergy relion 670

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.