PT-2022-5037 · Hitachi Energy · Hitachi Energy Microscada X Sys600

Name of the Vulnerable Software and Affected Versions: Hitachi Energy MicroSCADA Pro SYS600 versions 9.4 FP2 Hotfix 4 and earlier Hitachi Energy MicroSCADA X SYS600 versions 10 through 10.3.1 Description: The issue is related to an Improper Input Validation vulnerability in the handling of a...

PT-2022-5036 · Hitachi Energy · Hitachi Energy Microscada X Sys600

Name of the Vulnerable Software and Affected Versions: Hitachi Energy MicroSCADA Pro SYS600 versions 9.0 through 9.4 FP2 Hotfix 4 Hitachi Energy MicroSCADA X SYS600 versions 10 through 10.3.1 Description: The issue is caused by improper input validation in the handling of a malformed IEC 104 TCP...

Hitachi Energy MicroSCADA Pro/X SYS600

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: MicroSCADA Pro/X SYS600 Vulnerabilities: Observable Discrepancy, HTTP Request Smuggling, Classic Buffer Overflow, Improper Certificate Validation, Improper Restriction of...

ABB MicroSCADA Pro SYS600 Access Control Error Vulnerability

ABB MicroSCADA Pro SYS600 is a suite of monitoring and data acquisition software from ABB Switzerland. The software is used for substation automation, SCADA electrical, distribution management applications and industrial power management. An access control error vulnerability exists in ABB...

CVE-2019-5620

ABB MicroSCADA Pro SYS600 version 9.3 suffers from an instance of CWE-306: Missing Authentication for Critical Function...

CVE-2019-5620

ABB MicroSCADA Pro SYS600 version 9.3 suffers from an instance of CWE-306: Missing Authentication for Critical Function...

Authentication flaw

ABB MicroSCADA Pro SYS600 version 9.3 suffers from an instance of CWE-306: Missing Authentication for Critical Function...

CVE-2019-5620

CVE-2019-5620 concerns ABB MicroSCADA Pro SYS600 9.3, where a missing authentication for a critical function (CWE-306) enables a network-accessible flaw. The issue is tied to the wserver.exe component, described in public exploit evidence as a remote code execution scenario via unauthenticated EX...

CVE-2019-5620 ABB MicroSCADA Pro SYS600 Missing Authentication for Critical Function

ABB MicroSCADA Pro SYS600 version 9.3 suffers from an instance of CWE-306: Missing Authentication for Critical Function...

ABB MicroSCADA Detection (Windows SMB Login)

Detects the installed version of ABB MicroSCADA on Windows. The script logs in via smb, searches for MicroSCADA in the registry and gets the version from registry. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...

ABB MicroSCADA Installation Elevation of Privilege Vulnerability

ABB MicroSCADA is a suite of substation monitoring and control software from ABB Switzerland, developed specifically for power transmission and distribution systems. The software includes a human-machine interface MMI and flexible application engineering tools, and provides monitoring, event...

CVE-2018-1168

This vulnerability allows local attackers to escalate privileges on vulnerable installations of ABB MicroSCADA 9.3 with FP 1-2-3. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within t...

CVE-2018-1168

This vulnerability allows local attackers to escalate privileges on vulnerable installations of ABB MicroSCADA 9.3 with FP 1-2-3. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within t...

Design/Logic Flaw

This vulnerability allows local attackers to escalate privileges on vulnerable installations of ABB MicroSCADA 9.3 with FP 1-2-3. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within t...

CVE-2018-1168

ABB MicroSCADA 9.3 with FP 1-2-3 is affected by an improper access-control configuration in the installed product files. The installation procedure leaves critical files open to manipulation by any authenticated user, allowing local privilege escalation to SYSTEM. Root cause identified as misconf...

CVE-2018-1168

This vulnerability allows local attackers to escalate privileges on vulnerable installations of ABB MicroSCADA 9.3 with FP 1-2-3. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within t...

ABB MicroSCADA Improper Access Control Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of ABB MicroSCADA. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the configuration o...

PT-2018-10744 · Abb · Abb Microscada

Name of the Vulnerable Software and Affected Versions: ABB MicroSCADA versions 9.3 with FP 1-2-3 Description: This issue allows local attackers to escalate privileges on vulnerable installations. An attacker must first obtain the ability to execute low-privileged code on the target system in orde...

ABB MicroSCADA wserver.exe - Remote Code Execution

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::Tcp include...

ABB MicroSCADA Wserver Multiple Buffer Overflows

Multiple Buffer Overflow vulnerabilities have been reported in the Wserver component of ABB MicroSCADA. The vulnerabilities are due to the copying of user controlled data to stack-based buffers without size verification. A remote attacker can exploit this issue by sending a specially crafted...