Hitachi Energy ITT600 Explorer

Plan PatchCVSS 7.5ICS-CERT ICSA-26-155-02May 26, 2026

Hitachi EnergyEnergy

Attack path

Attack VectorNetwork

Auth RequiredNone

ComplexityLow

User InteractionNone needed

Summary

Hitachi Energy ITT600 Explorer versions 2.1 SP6 and earlier contain denial-of-service vulnerabilities (CWE-674 infinite loop, CWE-770 resource exhaustion) that can be exploited remotely without authentication. The flaws allow an attacker to cause the application to hang or crash. Affected versions are ITT600 Explorer before 2.1 SP6 and version 2.1 SP6 itself. The vulnerabilities do not affect IEC 61850 system endpoints, only the testing tool itself.

What this means

What could happen

An attacker could cause a denial-of-service (DoS) condition on the ITT600 Explorer testing tool, disrupting communications testing and configuration activities for IEC 61850 energy systems. While the tool itself is not a real-time control device, prolonged outages could delay critical grid testing and maintenance workflows.

Who's at risk

Energy utilities and transmission operators who use Hitachi Energy ITT600 Explorer for IEC 61850 system testing and configuration. The tool is used by engineering and operations teams to validate communication between substations and control centers, so DoS attacks could disrupt scheduled maintenance and grid testing activities.

How it could be exploited

An attacker with network access to the ITT600 Explorer can trigger a DoS condition through the affected code paths (CWE-674 infinite loop or CWE-770 resource exhaustion). The attack requires no authentication or user interaction, allowing remote exploitation if the tool is reachable from an untrusted network segment.

Prerequisites

Network access to ITT600 Explorer on its listening port
No authentication required

remotely exploitableno authentication requiredlow complexity

Exploitability

Some exploitation risk — EPSS score 1.6%

Affected products (2)

2 with fix

ProductAffected VersionsFix Status

ITT600 Explorer before< 2.1 SP62.1 SP6 HF1

ITT600 Explorer≤ 2.1 SP62.1 SP6 HF1

Remediation & Mitigation

0/4

Do now

0/1

ITT600 Explorer

WORKAROUNDRestrict network access to ITT600 Explorer to trusted engineering workstations only via firewall rules

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

ITT600 Explorer

HOTFIXUpdate ITT600 Explorer to version 2.1 SP6 HF1

Long-term hardening

0/2

ITT600 Explorer

HARDENINGIsolate ITT600 Explorer on a separate network segment or VLAN from production control systems and the internet

All products

HOTFIXPlan upgrade to version 2.2 when released by vendor

CVEs (2)

CVE-2024-8176 CVE-2025-59375

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/5b7b5779-5a47-46c7-b1e5-6462a2c92eb5

Get OT security insights every Tuesday

Advisory breakdowns, a weekly summary, and incident analyses for the people actually defending OT environments. Free, no account required.