Rtu500 series cmu

This hub aggregates every CVE we track for Rtu500 series cmu, a product in the ics ot iot space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Rtu500 series cmu.

• CVE-2022-2081A vulnerability exists in the HCI Modbus TCP function included in the product versions listed above. If the HCI Modbus TCP is enabled and configured, an attacker could exploit the vulnerability by ...7.5Jan 4, 2024
• CVE-2023-6711Vulnerability exists in SCI IEC 60870-5-104 and HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Specially crafted messages sent to the mentioned components are not...5.9Dec 19, 2023
• CVE-2023-1514A vulnerability exists in the component RTU500 Scripting interface. When a client connects to a server using TLS, the server presents a certificate. This certificate links a public key to the ident...7.4Dec 19, 2023
• CVE-2023-5769 A vulnerability exists in the webserver that affects the RTU500 series product versions listed below. A malicious actor could perform cross-site scripting on the webserver due to user input bei...5.4Dec 14, 2023
• CVE-2023-5768A vulnerability exists in the HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Incomplete or wrong received APDU frame layout may cause blocking on link layer. Er...5.9Dec 4, 2023
• CVE-2023-5767 A vulnerability exists in the webserver that affects the RTU500 series product versions listed below. A malicious actor could perform cross-site scripting on the webserver due to an RDT languag...6.0Dec 4, 2023
• CVE-2022-4608A vulnerability exists in HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with ...7.5Jul 26, 2023
• CVE-2022-2502A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured w...7.5Jul 26, 2023
• CVE-2022-4304Timing Oracle in RSA Decryption5.9Feb 8, 2023
• CVE-2023-0286X.400 address type confusion in X.509 GeneralName7.4Feb 8, 2023
• CVE-2022-28613Specially Crafted Modbus TCP Packet Vulnerability in RTU500 series7.5May 2, 2022
• CVE-2022-23937In Wind River VxWorks 6.9 and 7, a specific crafted packet may lead to an out-of-bounds read during an IKE initial exchange scenario.5.3Mar 29, 2022
• CVE-2022-0778Infinite loop in BN_mod_sqrt() reachable when parsing certificates7.5Mar 15, 2022
• CVE-2021-3712Read buffer overruns processing ASN.1 strings7.4Aug 24, 2021
• CVE-2021-3711SM2 Decryption Buffer Overflow9.8Aug 24, 2021