Hitachi Energy RTU500 NULL Pointer Dereference (CVE-2026-8479)

IEC 60870-5-104 used in bidirectional mode is vulnerable to a NULL pointer dereference; if a specially crafted sequence of messages is sent for a certain time, this causes Denial of Service impact. Product is only affected if IEC 60870-5-104 functionality in bidirectional mode BCI is configured...

CVE-2026-8479

IEC 60870-5-104 used in bidirectional mode in RTU500 is vulnerable for a NULL pointer dereferencing, if a specially crafted sequence of messages is sent for a certain time, causing Denial of Service impact. Product is only affected if IEC 60870-5-104 functionality in bidirectional mode BCI is...

CVE-2024-9684

FreyrSCADA/IEC-60870-5-104 server v21.06.008 is affected by a denial-of-service vulnerability triggered by specific message sequences. Root cause relates to how the server handles certain sequences, leading to an availability impact. The CVE is referenced across multiple sources (NVD, CVE List, C...

PT-2025-52761

Name of the Vulnerable Software and Affected Versions FreyrSCADA/IEC-60870-5-104 server version 21.06.008 Description The software is susceptible to a denial of service condition. Remote attackers can trigger this by transmitting specifically crafted message sequences. Recommendations Update to a...

airpig2011 IEC104 安全漏洞

airpig2011 IEC104 is a protocol used for power system automation communication by the individual developer dj chen in China. A security vulnerability exists in airpig2011 IEC104 Commit be6d841 and prior versions, which originates from a post-release reuse during multi-threaded execution that coul...

EUVD-2019-16385

Malware in sbrugna...

EUVD-2019-16364

Malware in sbrugna...

EUVD-2023-58051

Malicious code in bioql PyPI...

EUVD-2022-34760

Malicious code in bioql PyPI...

EUVD-2024-54521

Malicious code in bioql PyPI...

EUVD-2024-54517

Malicious code in bioql PyPI...

EUVD-2022-51940

Malicious code in bioql PyPI...

CVE-2023-6711

Vulnerability exists in SCI IEC 60870-5-104 and HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Specially crafted messages sent to the mentioned components are not validated properly and can result in buffer overflow and as final consequence to a reboot of an...

CVE-2023-5768

A vulnerability exists in the HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Incomplete or wrong received APDU frame layout may cause blocking on link layer. Error reason was an endless blocking when reading incoming frames on link layer with wrong length...

CVE-2019-6810

CWE-284: Improper Access Control vulnerability exists in BMXNOR0200H Ethernet / Serial RTU module all firmware versions, which could cause the execution of commands by unauthorized users when using IEC 60870-5-104 protocol...

CVE-2024-11499

A vulnerability exists in RTU500 IEC 60870-4-104 controlled station functionality, that allows an authenticated and authorized attacker to perform a CMU restart. The vulnerability can be triggered if certificates are updated while in use on active connections. The affected CMU will automatically...

CVE-2024-12169

A vulnerability exists in RTU500 IEC 60870-5-104 controlled station functionality and IEC 61850 functionality, that allows an attacker performing a specific attack sequence to restart the affected CMU. This vulnerability only applies, if secure communication using IEC 62351-3 TLS is enabled...

CVE-2024-12169

A vulnerability exists in RTU500 IEC 60870-5-104 controlled station functionality and IEC 61850 functionality, that allows an attacker performing a specific attack sequence to restart the affected CMU. This vulnerability only applies, if secure communication using IEC 62351-3 TLS is enabled...

CVE-2024-12169

A vulnerability exists in RTU500 IEC 60870-5-104 controlled station functionality and IEC 61850 functionality, that allows an attacker performing a specific attack sequence to restart the affected CMU. This vulnerability only applies, if secure communication using IEC 62351-3 TLS is enabled...

CVE-2024-12169

The CVE-2024-12169 entry involves Hitachi Energy RTU500 series, affecting the RTU500 IEC 60870-5-104 controlled-station functionality and IEC 61850 functionality. The described impact is that an attacker performing a specific attack sequence can restart the affected CMU, and this only applies whe...