1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Hitachi Energy
- Equipment: Relion 670, Relion 650, SAM600-IO
- Vulnerabilities: Integer Overflow or Wraparound
2. RISK EVALUATION
Successful exploitation of these vulnerabilities could allow an attacker to cause memory corruption on the products.
3. TECHNICAL DETAILS
3.1 AFFECTED PRODUCTS
Hitachi Energy reports that the following products are affected:
- Relion 670/650/SAM600-IO series: Version 2.2.5 revisions up to 2.2.5.1
- Relion 670/650 series: Version 2.2.4 revisions up to 2.2.4.2
- Relion 670 series: Version 2.2.3 revisions up to 2.2.3.4
- Relion 670 series: Version 2.2.2 revisions up to 2.2.2.4
- Relion 670/650/SAM600-IO series: Version 2.2.1 revisions up to 2.2.1.7
- Relion 670/650 series version 2.2.0: All revisions
- Relion 670/650 series version 2.1: All revisions
- Relion 670 series version 2.0: All revisions
- Relion 670 series version 1.2: All revisions
- Relion 670 series version 1.1: All revisions
- Relion 650 series version 1.3: All revisions
- Relion 650 series version 1.2: All revisions
- Relion 650 series version 1.1: All revisions
- Relion 650 series version 1.0: All revisions
3.2 VULNERABILITY OVERVIEW
3.2.1 INTEGER OVERFLOW OR WRAPAROUND CWE-190
In Wind River VxWorks, memory allocator has a possible overflow in calculating the memory block’s size to be allocated by calloc(). As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to memory corruption.
CVE-2020-28895 has been assigned to this vulnerability. A CVSS v3.1 base score of 7.3 has been calculated; the CVSS vector string is (This article has been indexed from All CISA Advisories