report2017.ocean-energy-systems.org Cross Site Scripting vulnerability OBB-3867985

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

report2016.ocean-energy-systems.org Cross Site Scripting vulnerability OBB-3858974

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Build Cyber Resilience with Distributed Energy Systems

...

The vulnerability of the SEL-5037 SEL Grid Configurator software in terms of creating, managing, and deploying energy systems lies in its use of rigidly encrypted credentials. This allows a malicious individual to bypass authentication processes.

The vulnerability of the SEL-5037 SEL Grid Configurator software for creating, managing, and deploying energy systems lies in the use of rigidly encrypted credentials. Exploiting this vulnerability could allow an attacker to bypass authentication processes...

The vulnerability of the SEL-5037 SEL Grid Configurator software in terms of creating, managing, and deploying energy systems allows a perpetrator to execute arbitrary code with administrative privileges. This vulnerability is related to errors in privilege management.

The vulnerability of the SEL-5037 SEL Grid Configurator software in terms of creating, managing, and deploying energy systems is related to errors in privilege management. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code with administrative privileges...

CVE-2022-29922 A vulnerability exists in the handling of a specially crafted IEC 61850 packet with a valid data item but with incorrect data type in the IEC 61850 OPC Server. The vulnerability may cause a denial-of-service on the IEC 61850 OPC Server part of the SYS ...

Improper Input Validation vulnerability in the handling of a specially crafted IEC 61850 packet with a valid data item but with incorrect data type in the IEC 61850 OPC Server in the Hitachi Energy MicroSCADA X SYS600, MicroSCADA Pro SYS600. The vulnerability may cause a denial-of-service on the...

ENISA Outlines Security Regulations for EU Smart Grid Expansion

The European Union has set a series of ambitious goals for itself: by 2020, the 27 member states expect to collectively use 20 percent renewable energy, reduce CO2 emissions by 20 percent, and increase energy efficiency by 20 percent. In order to accomplish these goals, Europe will need to perfor...

Survey of Executives Finds a Growing Fear of Cyberattacks

A survey of 600 computing and computer-security executives in 14 countries suggests that attacks on the Internet pose a growing threat to the energy and communication systems that underlie modern society. Read the full article New York Times...