CVE-2024-46601 identifies a buffer overflow vulnerability in the firmware version 1.2.1.12 of the Elspec Engineering G5 Digital Fault Recorder, a device used for monitoring and recording electrical faults in power systems. The vulnerability is classified under CWE-120, indicating a classic buffer overflow issue where improper bounds checking allows an attacker to overwrite memory. According to the CVSS 3.1 vector (7.5, high severity), the flaw is remotely exploitable over the network (AV:N) without any privileges (PR:N) or user interaction (UI:N). The impact is limited to availability (A:H), meaning an attacker can cause the device to crash or become unresponsive, resulting in denial of service conditions. There is no impact on confidentiality or integrity. The attack complexity is low (AC:L), making exploitation feasible with minimal effort. The vulnerability was reserved in September 2024 and published in January 2025. No patches or known exploits are currently available, indicating that the vulnerability is newly disclosed and may be targeted in the future. The affected product is specialized equipment used in electrical grid monitoring and fault analysis, making it a critical component in power infrastructure management.

The primary impact of this vulnerability is denial of service on Elspec Engineering G5 Digital Fault Recorders running vulnerable firmware. These devices are integral to power grid fault detection and monitoring, so their disruption can delay fault identification and response, potentially leading to prolonged outages or damage to electrical infrastructure. Organizations operating critical power generation, transmission, and distribution systems may experience operational disruptions, increased downtime, and safety risks. While the vulnerability does not allow data theft or manipulation, the loss of availability in such critical systems can have cascading effects on industrial operations, utilities, and public services. The ease of remote exploitation without authentication increases the risk of automated attacks or exploitation by threat actors targeting critical infrastructure. The absence of patches means affected organizations must rely on interim mitigations, increasing exposure duration.

Until an official patch is released by Elspec Engineering, organizations should implement strict network segmentation to isolate G5 Digital Fault Recorders from untrusted networks, limiting exposure to potential attackers. Deploy network-level access controls such as firewalls and intrusion prevention systems to restrict traffic to and from these devices only to trusted management stations. Continuous monitoring of network traffic for anomalous patterns targeting the fault recorders can help detect exploitation attempts early. Employ strict change management and firmware integrity verification to prevent unauthorized firmware modifications. Engage with the vendor for timely updates and subscribe to security advisories. Consider deploying redundant monitoring systems to maintain fault detection capabilities if devices become unavailable. Document and rehearse incident response plans specific to power infrastructure device outages to minimize operational impact.