First published: Mon Dec 04 2023(Updated: )
A vulnerability exists in the webserver that affects the RTU500 series product versions listed below. A malicious actor could perform cross-site scripting on the webserver due to an RDT language file being improperly sanitized.
Credit: cybersecurity@hitachienergy.com
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
Any of | ||
Hitachienergy Rtu520 Firmware | >=12.0.1<=12.0.14 | |
Hitachienergy Rtu520 Firmware | >=12.2.1<=12.2.11 | |
Hitachienergy Rtu520 Firmware | >=12.4.1<=12.4.11 | |
Hitachienergy Rtu520 Firmware | >=12.6.1<=12.6.9 | |
Hitachienergy Rtu520 Firmware | >=12.7.1<=12.7.6 | |
Hitachienergy Rtu520 Firmware | >=13.2.1<=13.2.6 | |
Hitachienergy Rtu520 Firmware | >=13.4.1<=13.4.3 | |
Hitachienergy Rtu520 | ||
All of | ||
Any of | ||
Hitachienergy Rtu530 Firmware | >=12.0.1<=12.0.14 | |
Hitachienergy Rtu530 Firmware | >=12.2.1<=12.2.11 | |
Hitachienergy Rtu530 Firmware | >=12.4.1<=12.4.11 | |
Hitachienergy Rtu530 Firmware | >=12.6.1<=12.6.9 | |
Hitachienergy Rtu530 Firmware | >=12.7.1<=12.7.6 | |
Hitachienergy Rtu530 Firmware | >=13.2.1<=13.2.6 | |
Hitachienergy Rtu530 Firmware | >=13.4.1<=13.4.3 | |
Hitachienergy Rtu530 | ||
All of | ||
Any of | ||
Hitachienergy Rtu540 Firmware | >=12.0.1<=12.0.14 | |
Hitachienergy Rtu540 Firmware | >=12.2.1<=12.2.11 | |
Hitachienergy Rtu540 Firmware | >=12.4.1<=12.4.11 | |
Hitachienergy Rtu540 Firmware | >=12.6.1<=12.6.9 | |
Hitachienergy Rtu540 Firmware | >=12.7.1<=12.7.6 | |
Hitachienergy Rtu540 Firmware | >=13.2.1<=13.2.6 | |
Hitachienergy Rtu540 Firmware | >=13.4.1<=13.4.3 | |
Hitachienergy Rtu540 | ||
All of | ||
Any of | ||
Hitachienergy Rtu560 Firmware | >=12.0.1<=12.0.14 | |
Hitachienergy Rtu560 Firmware | >=12.2.1<=12.2.11 | |
Hitachienergy Rtu560 Firmware | >=12.4.1<=12.4.11 | |
Hitachienergy Rtu560 Firmware | >=12.6.1<=12.6.9 | |
Hitachienergy Rtu560 Firmware | >=12.7.1<=12.7.6 | |
Hitachienergy Rtu560 Firmware | >=13.2.1<=13.2.6 | |
Hitachienergy Rtu560 Firmware | >=13.4.1<=13.4.3 | |
Hitachienergy Rtu560 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-5767 is a vulnerability in the webserver that affects the RTU500 series product versions.
CVE-2023-5767 has a severity level of medium (6).
CVE-2023-5767 affects Hitachienergy Rtu520 Firmware versions 12.0.1 to 12.0.14, 12.2.1 to 12.2.11, 12.4.1 to 12.4.11, 12.6.1 to 12.6.9, 12.7.1 to 12.7.6, 13.2.1 to 13.2.6, and 13.4.1 to 13.4.3.
CVE-2023-5767 affects Hitachienergy Rtu530 Firmware versions 12.0.1 to 12.0.14, 12.2.1 to 12.2.11, 12.4.1 to 12.4.11, 12.6.1 to 12.6.9, 12.7.1 to 12.7.6, 13.2.1 to 13.2.6, and 13.4.1 to 13.4.3.
CVE-2023-5767 affects Hitachienergy Rtu540 Firmware versions 12.0.1 to 12.0.14, 12.2.1 to 12.2.11, 12.4.1 to 12.4.11, 12.6.1 to 12.6.9, 12.7.1 to 12.7.6, 13.2.1 to 13.2.6, and 13.4.1 to 13.4.3.
CVE-2023-5767 affects Hitachienergy Rtu560 Firmware versions 12.0.1 to 12.0.14, 12.2.1 to 12.2.11, 12.4.1 to 12.4.11, 12.6.1 to 12.6.9, 12.7.1 to 12.7.6, 13.2.1 to 13.2.6, and 13.4.1 to 13.4.3.
To fix CVE-2023-5767, it is recommended to update to a version that is not vulnerable.