Improper Certificate Validation in Hitachi Energy PCM600 Update Manager
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2021-22278 |
| CWE-ID | CWE-295 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software Subscribe |
PCM600 Update Manager Other software / Other software solutions |
| Vendor | Hitachi Energy |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Improper Certificate Validation
EUVDB-ID: #VU58499
Risk: Low
CVSSv3.1: 5.8 [CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2021-22278
CWE-ID:
CWE-295 - Improper Certificate Validation
Exploit availability: No
DescriptionThe vulnerability allows a local user to compromise the target system.
The vulnerability exists due to improper certificate validation. A local user can create software packages, sign those packages with specially crafted certificates and point the PCM600 update server location to a different location.
MitigationInstall updates from vendor's website.
Vulnerable software versionsPCM600 Update Manager: 2.1 - 2.4.20119.2
CPE2.3- cpe:2.3:a:hitachi_energy:pcm600_update_manager:2.4.20119.2:*:*:*:*:*:*:*
- cpe:2.3:a:hitachi_energy:pcm600_update_manager:2.4.20041.1:*:*:*:*:*:*:*
- cpe:2.3:a:hitachi_energy:pcm600_update_manager:2.3.0.60:*:*:*:*:*:*:*
http://search.abb.com/library/Download.aspx?DocumentID=2NGA001142&LanguageCode=en&DocumentPartId=&Action=Launch
http://search.abb.com/library/Download.aspx?DocumentID=8DBD000056&LanguageCode=en&DocumentPartId=&Action=Launch
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
