Lucene search

Hitachi EnergyCVE-2024-7940

HistoryAug 27, 2024 - 1:15 p.m.

CVE-2024-7940

2024-08-2713:15:06

CWE-306

Hitachi Energy

web.nvd.nist.gov

cve-2024-7940

network interfaces

authentication

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

6.9

Confidence

Low

EPSS

0.001

Percentile

39.6%

JSON

The product exposes a service that is intended for local only to
all network interfaces without any authentication.

Affected configurations

Nvd

Node

hitachienergymicroscada_x_sys600Range10.2–10.6

VendorProductVersionCPE
hitachienergymicroscada_x_sys600*cpe:2.3:a:hitachienergy:microscada_x_sys600:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
hitachienergy	microscada_x_sys600	*	cpe:2.3:a:hitachienergy:microscada_x_sys600::::::::

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "MicroSCADA SYS600",
    "vendor": "Hitachi Energy",
    "versions": [
      {
        "lessThanOrEqual": "10.5",
        "status": "affected",
        "version": "10.2",
        "versionType": "custom"
      }
    ]
  }
]

References

publisher.hitachienergy.com/preview?DocumentID=8DBD000160&LanguageCode=en&DocumentPartId=&Action=Launch

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

6.9

Confidence

Low

EPSS

0.001

Percentile

39.6%

JSON

Related for CVE-2024-7940