CVE-2021-35526

Backup file without encryption vulnerability is found in Hitachi ABB Power Grids System Data Manager – SDM600 allows attacker to gain access to sensitive information. This issue affects: Hitachi ABB Power Grids System Data Manager – SDM600 1.2 versions prior to FP2 HF6 (Build Nr. 1.2.14002.257).
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:hitachiabb-powergrids:sdm600_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hitachienergy:sdm600:-:*:*:*:*:*:*:*

History

21 Nov 2024, 06:12

Type Values Removed Values Added
CVSS v2 : 7.2
v3 : 7.8
v2 : 7.2
v3 : 6.3
References () https://search.abb.com/library/Download.aspx?utm_campaign=&utm_content=2021.08_5051_Cybersecurity%20Advisory%3A&utm_medium=email&utm_source=Eloqua&DocumentID=9AKK107992A4700&LanguageCode=en&DocumentPartId=&Action=Launch&elqTrackId=ba79ef3d8aec4a4fad6c0cbe06d33d6c&elq=1bda419954724e908db108def16646a5&elqaid=3638&elqat=1&elqCampaignId= - Vendor Advisory () https://search.abb.com/library/Download.aspx?utm_campaign=&utm_content=2021.08_5051_Cybersecurity%20Advisory%3A&utm_medium=email&utm_source=Eloqua&DocumentID=9AKK107992A4700&LanguageCode=en&DocumentPartId=&Action=Launch&elqTrackId=ba79ef3d8aec4a4fad6c0cbe06d33d6c&elq=1bda419954724e908db108def16646a5&elqaid=3638&elqat=1&elqCampaignId= - Vendor Advisory
References () https://us-cert.cisa.gov/ics/advisories/icsa-21-250-02 - Third Party Advisory, US Government Resource () https://us-cert.cisa.gov/ics/advisories/icsa-21-250-02 - Third Party Advisory, US Government Resource

Information

Published : 2021-09-08 16:15

Updated : 2024-11-21 06:12


NVD link : CVE-2021-35526

Mitre link : CVE-2021-35526

CVE.ORG link : CVE-2021-35526


JSON object : View

Products Affected

hitachiabb-powergrids

  • sdm600_firmware

hitachienergy

  • sdm600
CWE
CWE-312

Cleartext Storage of Sensitive Information

CWE-863

Incorrect Authorization