Weak default credential associated with TCP port 26
CVE-2021-40333

9CRITICAL

Key Information:

Vendor: Hitachi
Status: Fox61x; Xcm20
Vendor: CVE Published:; 2 December 2021

Summary

Weak Password Requirements vulnerability in Hitachi Energy FOX61x, XCM20 allows an attacker to gain unauthorized access to the Data Communication Network (DCN) routing configuration. This issue affects: Hitachi Energy FOX61x versions prior to R15A. Hitachi Energy XCM20 versions prior to R15A.

Affected Version(s)

FOX61x R15A

XCM20 R15A

References

https://search.abb.com/library/Download.aspx?DocumentID=8...

x_refsource_CONFIRM

https://search.abb.com/library/Download.aspx?DocumentID=8...

x_refsource_CONFIRM

CVSS V3.1

Score:

Severity:

CRITICAL

Confidentiality:

Low

Integrity:

High

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Dec 2, 2021
Vulnerability Reserved
Aug 31, 2021

Collectors

NVD DatabaseMitre Database