172 matches found
CVE-2022-1778
CVE-2022-1778 describes an improper input validation that causes a buffer overflow during startup while reading a specific configuration file in Hitachi Energy MicroSCADA X SYS600. Affected products are SYS600 versions 10 through 10.3.1; the configuration file is accessible only to administrators...
CVE-2022-29922 A vulnerability exists in the handling of a specially crafted IEC 61850 packet with a valid data item but with incorrect data type in the IEC 61850 OPC Server. The vulnerability may cause a denial-of-service on the IEC 61850 OPC Server part of the SYS ...
Improper Input Validation vulnerability in the handling of a specially crafted IEC 61850 packet with a valid data item but with incorrect data type in the IEC 61850 OPC Server in the Hitachi Energy MicroSCADA X SYS600, MicroSCADA Pro SYS600. The vulnerability may cause a denial-of-service on the...
CVE-2022-29922
Summary: CVE-2022-29922 is an improper input validation flaw in Hitachi Energy MicroSCADA X SYS600 and MicroSCADA Pro SYS600, specifically in the IEC 61850 OPC Server handling a packet with a valid data item but incorrect data type, potentially causing a denial-of-service. Affected versions: Micr...
CVE-2022-2277 A vulnerability exists in the ICCP stack of the affected SYS600 versions due to validation flaw in the process that establishes the ICCP communication. The validation flaw will cause a denial-of-service when ICCP of SYS600 is request to forward any da ...
Improper Input Validation vulnerability exists in the Hitachi Energy MicroSCADA X SYS600's ICCP stack during the ICCP communication establishment causes a denial-of-service when ICCP of SYS600 is request to forward any data item updates with timestamps too distant in the future to any remote ICCP...
CVE-2022-2277 A vulnerability exists in the ICCP stack of the affected SYS600 versions due to validation flaw in the process that establishes the ICCP communication. The validation flaw will cause a denial-of-service when ICCP of SYS600 is request to forward any da ...
Improper Input Validation vulnerability exists in the Hitachi Energy MicroSCADA X SYS600's ICCP stack during the ICCP communication establishment causes a denial-of-service when ICCP of SYS600 is request to forward any data item updates with timestamps too distant in the future to any remote ICCP...
CVE-2022-2277
Hitachi Energy MicroSCADA X SYS600 ICCP stack vulnerability (CVE-2022-2277) allows remote DoS during ICCP establishment when forwarding data item updates with far-future timestamps. Affected products: SYS600 10.2–10.3.1; default ICCP not configured/enabled. CVSS v3.1 base score 7.5 (Network, Low ...
Hitachi Energy MicroSCADA X SYS600 输入验证错误漏洞
Hitachi Energy MicroSCADA X SYS600 is a SCADA product from Hitachi Japan. It ensures optimal control and reliable operation of your switching station through seamless integration and connection between different devices and systems. A security vulnerability exists in Hitachi Energy MicroSCADA X...
Hitachi Energy MicroSCADA X SYS600 输入验证错误漏洞
Hitachi Energy MicroSCADA X SYS600 is a SCADA product from Hitachi Japan. It ensures optimal control and reliable operation of your switching station through seamless integration and connectivity between different devices and systems. A security vulnerability in Hitachi Energy MicroSCADA X SYS600...
Hitachi Energy MicroSCADA X SYS600 缓冲区错误漏洞
Hitachi Energy MicroSCADA X SYS600 is a SCADA product from Hitachi, Japan. It ensures optimal control and reliable operation of your switching station through seamless integration and connectivity between different devices and systems. A buffer error vulnerability exists in Hitachi Energy...
Hitachi Energy MicroSCADA X SYS600 输入验证错误漏洞
Hitachi Energy MicroSCADA X SYS600 is a SCADA product from Hitachi Japan. It ensures optimal control and reliable operation of your switching station through seamless integration and connectivity between different devices and systems. A security vulnerability exists in Hitachi Energy MicroSCADA X...
CVE-2022-29490
Improper Authorization vulnerability exists in the Workplace X WebUI of the Hitachi Energy MicroSCADA X SYS600 allows an authenticated user to execute any MicroSCADA internal scripts irrespective of the authenticated user's role. This issue affects: Hitachi Energy MicroSCADA X SYS600 version 10 t...
CVE-2022-29490
Improper Authorization vulnerability exists in the Workplace X WebUI of the Hitachi Energy MicroSCADA X SYS600 allows an authenticated user to execute any MicroSCADA internal scripts irrespective of the authenticated user's role. This issue affects: Hitachi Energy MicroSCADA X SYS600 version 10 t...
Authorization
Improper Authorization vulnerability exists in the Workplace X WebUI of the Hitachi Energy MicroSCADA X SYS600 allows an authenticated user to execute any MicroSCADA internal scripts irrespective of the authenticated user's role. This issue affects: Hitachi Energy MicroSCADA X SYS600 version 10 t...
CVE-2022-29490
CVE-2022-29490 affects Hitachi Energy MicroSCADA X SYS600 Workplace X WebUI, with versions 10 through 10.3.1 vulnerable to an Improper Authorization: an authenticated user can execute internal scripts irrespective of role. Connected sources document this vulnerability and cite affected versions; ...
CVE-2022-29490 A vulnerability exists in the Workplace X WebUI in which an authenticated user is able to execute any MicroSCADA internal scripts irrespective of the authenticated user's role.
Improper Authorization vulnerability exists in the Workplace X WebUI of the Hitachi Energy MicroSCADA X SYS600 allows an authenticated user to execute any MicroSCADA internal scripts irrespective of the authenticated user's role. This issue affects: Hitachi Energy MicroSCADA X SYS600 version 10 t...
Hitachi Energy MicroSCADA X SYS600 安全漏洞
Hitachi Energy MicroSCADA X SYS600 is a SCADA product from Hitachi Japan. It ensures optimal control and reliable operation of your switching station through seamless integration and connectivity between different devices and systems. A security vulnerability exists in Hitachi Energy MicroSCADA X...
PT-2022-19656 · Hitachi Energy · Microscada X Sys600
Name of the Vulnerable Software and Affected Versions: Hitachi Energy MicroSCADA X SYS600 versions 10 through 10.3.1 Description: An Improper Authorization issue exists in the Workplace X WebUI of the Hitachi Energy MicroSCADA X SYS600, allowing an authenticated user to execute any MicroSCADA...
CVE-2022-29490
Improper Authorization vulnerability exists in the Workplace X WebUI of the Hitachi Energy MicroSCADA X SYS600 allows an authenticated user to execute any MicroSCADA internal scripts irrespective of the authenticated user's role. This issue affects: Hitachi Energy MicroSCADA X SYS600 version 10 t...
PT-2022-5035 · Hitachi Energy · Hitachi Energy Microscada X Sys600
Name of the Vulnerable Software and Affected Versions: Hitachi Energy MicroSCADA X SYS600 versions 10.2 through 10.3.1 Description: The issue is related to an Improper Input Validation vulnerability in the ICCP stack of Hitachi Energy MicroSCADA X SYS600. This vulnerability can cause a...
PT-2022-5038 · Hitachi Energy · Microscada X Sys600
Name of the Vulnerable Software and Affected Versions: Hitachi Energy MicroSCADA X SYS600 versions 10 through 10.3.1 Description: The issue is caused by improper input validation in a specific configuration file, leading to a buffer-overflow. This can cause the SYS600 to fail to start. The...