CVE-2025-39204

The CVE-2025-39204 entry affects Hitachi MicroSCADA X SYS600, specifically a vulnerability in the Web interface where a malformed filtering query can leak file content via the Web UI. Affected component: the Web interface filtering logic; root cause: malformed queries exposing data. Impact: infor...

CVE-2025-39204

A vulnerability exists in the Web interface of the MicroSCADA X SYS600 product. The filtering query in the Web interface can be malformed, so returning data can leak unauthorized information to the user...

CVE-2025-39203

A vulnerability exists in the IEC 61850 of the MicroSCADA X SYS600 product. An IEC 61850-8 crafted message content from IED or remote system can cause a denial of service resulting in disconnection loop...

CVE-2025-39203

A vulnerability exists in the IEC 61850 of the MicroSCADA X SYS600 product. An IEC 61850-8 crafted message content from IED or remote system can cause a denial of service resulting in disconnection loop...

CVE-2025-39203

The CVE-2025-39203 entry concerns the IEC 61850 component of Hitachi Energy’s MicroSCADA X SYS600. The connected documents provide concrete details: a crafted IEC 61850-8 message from an IED or remote system can cause a denial of service, resulting in a disconnection loop in SYS600. The issue is ...

CVE-2025-39202

CVE-2025-39202 concerns Hitachi MicroSCADA X SYS600, specifically the Monitor Pro interface. An authenticated user with low privileges can both view and overwrite files, enabling information disclosure and data corruption. Multiple connected sources (NVD, Red Hat, CIRCL, CISA ICS advisory, etc.) ...

CVE-2025-39202

A vulnerability exists in in the Monitor Pro interface of the MicroSCADA X SYS600 product. An authenticated user with low privileges can see and overwrite files causing information leak and data corruption...

CVE-2025-39202

A vulnerability exists in in the Monitor Pro interface of the MicroSCADA X SYS600 product. An authenticated user with low privileges can see and overwrite files causing information leak and data corruption...

CVE-2025-39201

A vulnerability exists in MicroSCADA X SYS600 product. If exploited this could allow a local unauthenticated attacker to tamper a system file, making denial of Notify service...

CVE-2025-39201

A vulnerability exists in MicroSCADA X SYS600 product. If exploited this could allow a local unauthenticated attacker to tamper a system file, making denial of Notify service...

CVE-2025-39201

CVE-2025-39201 refers to vulnerabilities in Hitachi Energy’s MicroSCADA X SYS600 affecting multiple subsystems (mailslot, monitors/logs, TLS certificate validation, and crafted IEC 61850 messages). Public sources (ICS advisories) indicate: a local access requirement can allow a local attacker to ...

PT-2025-26718 · Unknown · Microscada X Sys600

Name of the Vulnerable Software and Affected Versions: MicroSCADA X SYS600 affected versions not specified Description: A vulnerability exists in the IEC 61850 of the MicroSCADA X SYS600 product, where an IEC 61850-8 crafted message content from IED or remote system can cause a denial of service,...

PT-2025-26720

Name of the Vulnerable Software and Affected Versions: MicroSCADA X SYS600 affected versions not specified Description: A vulnerability exists in the IEC 61850 protocol implementation, allowing a remote Man-in-the-Middle attack due to missing proper validation of the TLS protocol's certificate...

Hitachi MicroSCADA X SYS600 安全漏洞

Hitachi MicroSCADA X SYS600 is a Hitachi MicroSCADA X SYS600 data acquisition and monitoring control system mainly used in power systems. A security vulnerability exists in the Hitachi MicroSCADA X SYS600, which is caused by an improperly filtered web interface query that results in information...

Hitachi Energy MicroSCADA X SYS600 安全漏洞

Hitachi MicroSCADA X SYS600 is a Hitachi Energy MicroSCADA X SYS600, a data acquisition and monitoring control system primarily used in power systems. A security vulnerability exists in Hitachi Energy MicroSCADA X SYS600 that originates from a denial of service due to improper handling of IEC...

Hitachi MicroSCADA X SYS600 安全漏洞

Hitachi MicroSCADA X SYS600 is a data acquisition and monitoring control system primarily used in power systems from Hitachi, Japan. A security vulnerability exists in the HITACHI MicroSCADA X SYS600 that stems from an insufficient validation of the TLS protocol certificate leading to a...

PT-2025-26716 · Unknown · Microscada X Sys600

Name of the Vulnerable Software and Affected Versions: MicroSCADA X SYS600 affected versions not specified Description: A vulnerability exists in the Monitor Pro interface of the MicroSCADA X SYS600 product, allowing an authenticated user with low privileges to see and overwrite files. This can...

PT-2025-26715 · Unknown · Microscada X Sys600

Name of the Vulnerable Software and Affected Versions: MicroSCADA X SYS600 affected versions not specified Description: A vulnerability exists in the MicroSCADA X SYS600 product. If exploited, this could allow a local unauthenticated attacker to tamper with a system file, making denial of the...

Hitachi MicroSCADA X SYS600 安全漏洞

Hitachi MicroSCADA X SYS600 is a Hitachi MicroSCADA X SYS600 data acquisition and monitoring control system primarily used in power systems. A security vulnerability exists in Hitachi MicroSCADA X SYS600, which can be exploited by an unauthorized local attacker to cause a denial of service by...

Hitachi MicroSCADA X SYS600 安全漏洞

Hitachi MicroSCADA X SYS600 is a Hitachi MicroSCADA X SYS600 data acquisition and monitoring control system mainly used in power systems. A security vulnerability exists in the Hitachi MicroSCADA X SYS600 that originates from insufficient validation of Monitor Pro interface privileges resulting i...