Vulnerability Description
Missing Handler vulnerability in the proprietary management protocol (port TCP 5558) of Hitachi Energy FOX61x, XCM20 allows an attacker that exploits the vulnerability by activating SSH on port TCP 5558 to cause disruption to the NMS and NE communication. This issue affects: Hitachi Energy FOX61x versions prior to R15A. Hitachi Energy XCM20 versions prior to R15A.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hitachienergy | Fox615 Firmware | < r15a |
| Hitachienergy | Fox615 | - |
| Hitachienergy | Xcm20 Firmware | < r15a |
| Hitachienergy | Xcm20 | - |
Related Weaknesses (CWE)
References
- https://search.abb.com/library/Download.aspx?DocumentID=8DBD000062&LanguageCode=Vendor Advisory
- https://search.abb.com/library/Download.aspx?DocumentID=8DBD000069&LanguageCode=Vendor Advisory
- https://search.abb.com/library/Download.aspx?DocumentID=8DBD000062&LanguageCode=Vendor Advisory
- https://search.abb.com/library/Download.aspx?DocumentID=8DBD000069&LanguageCode=Vendor Advisory
FAQ
What is CVE-2021-40334?
CVE-2021-40334 is a vulnerability with a CVSS score of 8.6 (HIGH). Missing Handler vulnerability in the proprietary management protocol (port TCP 5558) of Hitachi Energy FOX61x, XCM20 allows an attacker that exploits the vulnerability by activating SSH on port TCP 55...
How severe is CVE-2021-40334?
CVE-2021-40334 has been rated HIGH with a CVSS base score of 8.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-40334?
Check the references section above for vendor advisories and patch information. Affected products include: Hitachienergy Fox615 Firmware, Hitachienergy Fox615, Hitachienergy Xcm20 Firmware, Hitachienergy Xcm20.