CVE-2021-35532

Firmware upload verification bypass in TXpert Hub CoreTec 4

Description

A vulnerability exists in the file upload validation part of Hitachi Energy TXpert Hub CoreTec 4 product. The vulnerability allows an attacker or malicious agent who manages to gain access to the system and obtain an account with sufficient privilege to upload a malicious firmware to the product. This issue affects: Hitachi Energy TXpert Hub CoreTec 4 version 2.0.0; 2.0.1; 2.1.0; 2.1.1; 2.1.2; 2.1.3; 2.2.0; 2.2.1.

Remediation

Workaround:

To reduce risk of exploitation, please apply the recommended mitigation as described in the advisory Section Mitigation Factors/Workarounds.

References

Link	Tags
https://search.abb.com/library/Download.aspx?DocumentID=8DBD000080&LanguageCode=en&DocumentPartId=&Action=Launch&utm_campaign=&utm_content=2022.04_5763_Cybersecurity%20Advisory%20Update_May_03&utm_medium=email&utm_source=Eloqua	vendor advisory

Frequently Asked Questions

What is the severity of CVE-2021-35532?: CVE-2021-35532 has been scored as a medium severity vulnerability.
How to fix CVE-2021-35532?: As a workaround for remediating CVE-2021-35532: To reduce risk of exploitation, please apply the recommended mitigation as described in the advisory Section Mitigation Factors/Workarounds.
Is CVE-2021-35532 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2021-35532 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2021-35532?: CVE-2021-35532 affects Hitachi Energy TXpert Hub CoreTec 4 version.

Description

Remediation

Categories

CWE-494 – Download of Code Without Integrity Check

CWE-434 – Unrestricted Upload of File with Dangerous Type

References

Frequently Asked Questions