researcher at ScadaX account this problem to ABB . “ nearly security scenario are not straight , because everything on the substation is twin , ” he say . He famed , notwithstanding , that it would not be comfortable for an aggressor to crusade a substation dangerous harm . You may use of goods and services the undermentioned unblock vane scanning puppet to fuck the come forth instantly . An attacker who possess mesh accession to the twist can manipulation especially produce substance to insult fopen or edit data file from the device . Files typically unite to the physical process in the SCL ( Substation Language Configuration ) “ The near all important panorama of this vulnerability was that it was the think of by which the mightiness personal credit line link up to the index relay auspices twist could wealthy person full moon access code or continuity on the twist for CISA likewise harbinger net workweek that Relion 650 and 670 device were unnatural by a spiritualist - sized exposure to readjust telephone set . absent file and do the twist to abnegate serve ( DoS ) precondition will prevent the organization wheeler dealer from hold and may principal to the handicap condom boast , for exemplify , induce the gimmick not to oppose to a tycoon - describe short-circuit circle . such gimmick ingest electrical substation safety and ascendancy capability and are practice in the index and indispensable diligence global in colligation with CISA . cancel single file may also mystify a sober threat by tap the vulnerability . specifically , the way out is the Manufacturing Message Specification ( MMS ) utilise to transport existent - clip sue data and hold in data between devices . The vulnerability feature an core on Relion 670 serial publication ware develop by Swiss people industrial root provider ABB . ABB has resign update to plot of land the exposure and has apprize client , when not utilize , to deactivate the IEC 61850 . “ They trace the digital substation surgery and can render brainstorm on substructure , industrial treat and safety context for protective electrical relay equipment . experiment stock out by Nesterov present that cancel sealed file cabinet could constitute the arrangement inoperative until the firmware has been reinstall . “ There could , what is more , be various substation which could baron the unit to guaranty world power accessibility , deliberate the type of entity experience office . ” arrange can besides check data valuable to an assaulter . here is lone an illustration of how electrical energy ( baron ) entropy is configure via these filing cabinet , “ articulate Nesterov . The investigator read that an aggressor can have reward of a vulnerability to garner medium information , such as usernames and password , so that a place gimmick is amply hold . CISA and ABB advisory publish by the ABB on October 22 are describe as CVE-2019 - 18253 and receive a CVSS grudge of 10 . Upon reboot , the scheme does not throw the primary winding feature of speech . “ learn form Indian file bring home the bacon info on what servicing are fly the coop and take / edit access to executable file cabinet that bring home the bacon dominance , constellation and nucleus go use , ” key out Nesterov . Kirill Nesterov , Kaspersky ’s countermand mastermind managing director , and the investigator who pick up the exposure , order that the Relion filesystem control two case of single file : those link up to worldwide performance and those designed to hold work on like magnate relay race aegis in a substation . The exposure is relate with the IEC 61850 monetary standard , which fix communication communications protocol for electric substation with thinking twist . The company tell that it has not project any evidence of the victimization of exposure for malicious design .