Lucene search
K

50 matches found

Cvelist
Cvelist
added 2021/10/28 12:45 p.m.26 views

CVE-2021-22278 Certificate verification vulnerability in Update Manager of PCM600 Engineering Tool

A certificate validation vulnerability in PCM600 Update Manager allows attacker to get unwanted software packages to be installed on computer which has PCM600 installed...

6.7CVSS6.7AI score0.00124EPSS
Exploits0References2
CVE
CVE
added 2021/10/28 12:45 p.m.53 views

CVE-2021-22278

CVE-2021-22278 describes an improper certificate validation in Hitachi Energy PCM600 Update Manager. Affected PCM600 Update Manager versions include 2.1, 2.1.0.4, 2.2, 2.2.0.1, 2.2.0.2, 2.2.0.23, 2.3.0.60, 2.4.20041.1, and 2.4.20119.2. According to the ICS advisory, exploitation could allow an ad...

6.7CVSS6.5AI score0.00124EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/21 12:0 a.m.9 views

The vulnerability of the ABB PCM600 control and configuration device allows a intruder to gain access to user passwords.

The vulnerability of the ABB PCM600 control and configuration device lies in the storage of passwords in an unencrypted form. Exploiting this vulnerability could allow a malicious actor, operating locally, to gain access to the passwords of the IEC61850 OPC server by analyzing the System.xml...

2.1CVSS6.5AI score0.00285EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2016/06/10 1:59 a.m.16 views

CVE-2016-4527

ABB PCM600 before 2.7 improperly stores PCM600 authentication credentials, which allows local users to obtain sensitive information via unspecified vectors...

3.3CVSS4.4AI score0.00322EPSS
Exploits0References1
OSV
OSV
added 2016/06/10 1:59 a.m.3 views

CVE-2016-4527

ABB PCM600 before 2.7 improperly stores PCM600 authentication credentials, which allows local users to obtain sensitive information via unspecified vectors...

3.3CVSS5.8AI score0.00322EPSS
Exploits0References1
NVD
NVD
added 2016/06/10 1:59 a.m.18 views

CVE-2016-4524

ABB PCM600 before 2.7 improperly stores OPC Server IEC61850 passwords in unspecified temporary circumstances, which allows local users to obtain sensitive information via unknown vectors...

6.5CVSS6.1AI score0.00285EPSS
Exploits0References1
OSV
OSV
added 2016/06/10 1:59 a.m.3 views

CVE-2016-4524

ABB PCM600 before 2.7 improperly stores OPC Server IEC61850 passwords in unspecified temporary circumstances, which allows local users to obtain sensitive information via unknown vectors...

6.5CVSS5.8AI score0.00285EPSS
Exploits0References1
NVD
NVD
added 2016/06/10 1:59 a.m.22 views

CVE-2016-4516

ABB PCM600 before 2.7 improperly stores the main application password after a password change, which allows local users to obtain sensitive information via unspecified vectors...

3.3CVSS4.4AI score0.003EPSS
Exploits0References1
OSV
OSV
added 2016/06/10 1:59 a.m.6 views

CVE-2016-4516

ABB PCM600 before 2.7 improperly stores the main application password after a password change, which allows local users to obtain sensitive information via unspecified vectors...

3.3CVSS5.8AI score0.003EPSS
Exploits0References1
NVD
NVD
added 2016/06/10 1:59 a.m.32 views

CVE-2016-4511

ABB PCM600 before 2.7 uses an improper hash algorithm for the main application password, which makes it easier for local users to obtain sensitive cleartext information by leveraging read access to the ACTConfig configuration file...

2.8CVSS4.1AI score0.00304EPSS
Exploits0References1
OSV
OSV
added 2016/06/10 1:59 a.m.5 views

CVE-2016-4511

ABB PCM600 before 2.7 uses an improper hash algorithm for the main application password, which makes it easier for local users to obtain sensitive cleartext information by leveraging read access to the ACTConfig configuration file...

2.8CVSS5.8AI score0.00304EPSS
Exploits0References1
Prion
Prion
added 2016/06/10 1:59 a.m.19 views

Default credentials

ABB PCM600 before 2.7 improperly stores the main application password after a password change, which allows local users to obtain sensitive information via unspecified vectors...

2.1CVSS6.4AI score0.003EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2016/06/10 1:59 a.m.18 views

Design/Logic Flaw

ABB PCM600 before 2.7 uses an improper hash algorithm for the main application password, which makes it easier for local users to obtain sensitive cleartext information by leveraging read access to the ACTConfig configuration file...

1.9CVSS6.1AI score0.00304EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2016/06/10 1:59 a.m.12 views

Authentication flaw

ABB PCM600 before 2.7 improperly stores PCM600 authentication credentials, which allows local users to obtain sensitive information via unspecified vectors...

1.9CVSS6.4AI score0.00322EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2016/06/10 1:59 a.m.17 views

Design/Logic Flaw

ABB PCM600 before 2.7 improperly stores OPC Server IEC61850 passwords in unspecified temporary circumstances, which allows local users to obtain sensitive information via unknown vectors...

2.1CVSS6.2AI score0.00285EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2016/06/10 1:0 a.m.23 views

CVE-2016-4527

ABB PCM600 before 2.7 improperly stores PCM600 authentication credentials, which allows local users to obtain sensitive information via unspecified vectors...

3.6AI score0.00322EPSS
Exploits0References1
Cvelist
Cvelist
added 2016/06/10 1:0 a.m.27 views

CVE-2016-4516

ABB PCM600 before 2.7 improperly stores the main application password after a password change, which allows local users to obtain sensitive information via unspecified vectors...

3.5AI score0.003EPSS
Exploits0References1
CVE
CVE
added 2016/06/10 1:0 a.m.67 views

CVE-2016-4511

CVE-2016-4511 concerns ABB PCM600 prior to version 2.7, where the main application password stored in ACTConfig is hashed with a weak function. This enables local attackers with read access to ACTConfig to obtain sensitive cleartext information. The vulnerability is described as a password hash/i...

2.8CVSS3.4AI score0.00304EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2016/06/10 1:0 a.m.53 views

CVE-2016-4524

CVE-2016-4524 affects ABB PCM600 (OPC Server IEC61850) prior to version 2.7. The vulnerability arises from insecure handling of authentication passwords: the OPC Server IEC61850 credentials are stored in clear text or unsecured temporary locations in the configuration/file artifacts, enabling a l...

6.5CVSS6AI score0.00285EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2016/06/10 1:0 a.m.30 views

CVE-2016-4511

ABB PCM600 before 2.7 uses an improper hash algorithm for the main application password, which makes it easier for local users to obtain sensitive cleartext information by leveraging read access to the ACTConfig configuration file...

3.2AI score0.00304EPSS
Exploits0References1
Rows per page
Query Builder