Vulnerability Description
A vulnerability exists in the webserver that affects the RTU500 series product versions listed below. A malicious actor could perform cross-site scripting on the webserver due to an RDT language file being improperly sanitized.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hitachienergy | Rtu520 Firmware | >= 12.0.1, <= 12.0.14 |
| Hitachienergy | Rtu520 | - |
| Hitachienergy | Rtu530 Firmware | >= 12.0.1, <= 12.0.14 |
| Hitachienergy | Rtu530 | - |
| Hitachienergy | Rtu540 Firmware | >= 12.0.1, <= 12.0.14 |
| Hitachienergy | Rtu540 | - |
| Hitachienergy | Rtu560 Firmware | >= 12.0.1, <= 12.0.14 |
| Hitachienergy | Rtu560 | - |
Related Weaknesses (CWE)
References
- https://publisher.hitachienergy.com/preview?DocumentId=8DBD000176&languageCode=eVendor Advisory
- https://publisher.hitachienergy.com/preview?DocumentId=8DBD000176&languageCode=eVendor Advisory
FAQ
What is CVE-2023-5767?
CVE-2023-5767 is a vulnerability with a CVSS score of 6.0 (MEDIUM). A vulnerability exists in the webserver that affects the RTU500 series product versions listed below. A malicious actor could perform cross-site scripting on the webserver due to an RDT language f...
How severe is CVE-2023-5767?
CVE-2023-5767 has been rated MEDIUM with a CVSS base score of 6.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-5767?
Check the references section above for vendor advisories and patch information. Affected products include: Hitachienergy Rtu520 Firmware, Hitachienergy Rtu520, Hitachienergy Rtu530 Firmware, Hitachienergy Rtu530, Hitachienergy Rtu540 Firmware.