THE ICS Advisory for Hitachi Energy ITT600 Explorer, released on June 4, 2026 (Alert Code: ICSA-26-155-02), details vulnerabilities that could allow denial of service (DoS) attacks. Versions affected include ITT600 Explorer prior to 2.1 SP6. The vulnerabilities stem from uncontrolled recursion and resource allocation issues, specifically linked to the libexpat library used by the IEC61850 functionality. Users are advised to update to version 2.1 SP6 HF1 or later to mitigate risks.
CISA emphasizes the importance of maintaining robust cybersecurity measures to protect critical infrastructure, recommending practices such as isolating control system networks from the internet and employing firewalls.