Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Hitachi Energy — Vulnerabilities & Security Advisories 102

Browse all 102 CVE security advisories affecting Hitachi Energy. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Hitachi Energy operates as a global technology leader specializing in electrification products, grid automation, and renewable energy solutions. Its portfolio includes critical infrastructure components such as power transformers, high-voltage direct current systems, and digital grid management software, making it a vital node in global energy distribution. Security assessments reveal a historical prevalence of common vulnerability classes, including remote code execution, cross-site scripting, and privilege escalation flaws, particularly within its industrial control software and web-based management interfaces. These weaknesses often stem from legacy codebases and complex integration requirements inherent in operational technology environments. While no catastrophic public breaches have been widely documented, the sheer volume of recorded CVEs indicates persistent challenges in patching distributed assets. The company maintains rigorous internal security protocols, yet the attack surface remains expansive due to the interconnected nature of modern smart grids and the long lifecycle of installed hardware.

Top products by Hitachi Energy: FOXMAN-UN MicroSCADA X SYS600 RTU500 series CMU Firmware SDM600 RTU500 RTU500 series TXpert Hub CoreTec 4 version TropOS 4th Gen Asset Suite TRMTracker MicroSCADA SYS600 eSOMS FOX61x Relion REB500 Relion 670/650 and SAM600-IO Relion 670 Series MACH System Software NSD570 Teleprotection Equipment TRO600 MSM MACH SCM SuprOS Retail Operations MACH SCM Server Asset Suite EAM FOX61x TEGO1 Relion 670/650/SAM600-IO Series RTU500 Scripting Interface LinkOne Relion670
CVE IDTitleCVSSSeverityPublished
CVE-2021-40335 Cross Site Request Forgery (CSRF) in Hitachi Energy’s MSM Product — MSMCWE-352 5.0 Medium2022-07-25
CVE-2021-35530 User authentication bypass in TXpert Hub CoreTec 4 — TXpert Hub CoreTec 4 versionCWE-288 6.0 Medium2022-06-07
CVE-2021-35531 Remote Code Execution in TXpert Hub CoreTec 4 — TXpert Hub CoreTec 4 versionCWE-20 6.7 -2022-06-07
CVE-2021-35532 Firmware upload verification bypass in TXpert Hub CoreTec 4 — TXpert Hub CoreTec 4 versionCWE-494 7.2 -2022-06-07
CVE-2022-28613 Specially Crafted Modbus TCP Packet Vulnerability in RTU500 series — RTU500 series CMU FirmwareCWE-1284 7.5 High2022-05-02
CVE-2021-40337 OWASP Related Vulnerabilities in Hitachi Energy’s LinkOne Product — LinkOneCWE-79 4.2 Medium2022-01-25
CVE-2021-40333 Weak default credential associated with TCP port 26 — FOX61xCWE-521 9.0 Critical2021-12-02
CVE-2021-40334 SSH activation problem in the proprietary management protocol (port TCP 5558) — FOX61xCWE-431 8.6 High2021-12-02
CVE-2021-35533 Specially Crafted IEC 60870-5-104 Packet Vulnerability in RTU500 series — RTU500 seriesCWE-20 7.5 High2021-11-26
CVE-2021-35534 Insufficient Security Control Vulnerability — Relion 670 SeriesCWE-274 7.2 High2021-11-18
CVE-2021-35535 Insufficient Security Control Vulnerability — Relion 670 SeriesCWE-1188 8.1 High2021-11-18
CVE-2021-35528 Authentication Bypass Vulnerability Vulnerability in Retail Operations Product and Counterparty Settlement and Billing (CSB) — Retail OperationsCWE-284 7.2 High2021-11-17

This page lists every published CVE security advisory associated with Hitachi Energy. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.