216.73.216.133

CVE-2026-8479

· Published 26/05/2026 14:16 · Modified 26/05/2026 20:03

Labels: CVE-2026-8479 2026-05-26CVE-2026-8479CWE-476[email protected]

Essential information

Published
26/05/2026 14:16
Modified
26/05/2026 20:03
Author
Creator
CVSS
6.9 MEDIUM (v3) 6.9 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

IEC 60870-5-104 used in bidirectional mode in RTU500 is vulnerable for a NULL pointer dereferencing, if a specially crafted sequence of messages is sent for a certain time, causing Denial of Service impact. Product is only affected if IEC 60870-5-104 functionality in bidirectional mode (BCI) is configured.

NVD status

Status
Deferred — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
hitachi energy / iec 60870-5-104 cpe:2.3:a:hitachi_energy:iec_60870-5-104:*:*:*:*:*:*:*:*

References