A vulnerability exists in the RTU500 that allows for authenticated and authorized users to bypass secure update. If a malicious actor successfully exploits this vulnerability, they could use it to update the RTU500 with unsigned firmware.
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000199&languageCode=en&Preview=true