CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CISA released four Industrial Control Systems ICS advisories on July 3, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-184-01 Hitachi Energy Relion 670/650 and SAM600-IO Series ICSA-25-184-02 Hitachi Energy...

7AI score

Exploits0References4

ICS•added 2025/07/03 6:0 a.m.•3 views

Hitachi Energy MicroSCADA X SYS600

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to tamper with the system file, overwrite files, create a denial-of-service condition, or leak file content. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

7.3AI score

Exploits0References10

RedhatCVE•added 2025/06/26 12:25 p.m.•1 views

CVE-2025-39203

A vulnerability exists in the IEC 61850 of the MicroSCADA X SYS600 product. An IEC 61850-8 crafted message content from IED or remote system can cause a denial of service resulting in disconnection loop...

8.3CVSS7.3AI score0.00103EPSS

Exploits0References1

RedhatCVE•added 2025/06/26 12:25 p.m.•2 views

CVE-2025-39205

A vulnerability exists in the IEC 61850 in MicroSCADA X SYS600 product. The certificate validation of the TLS protocol allows remote Man-in-the-Middle attack due to missing proper validation...

8.3CVSS7.2AI score0.00095EPSS

Exploits0References1

OSV•added 2025/06/24 1:15 p.m.•3 views

CVE-2025-39205

A vulnerability exists in the IEC 61850 in MicroSCADA X SYS600 product. The certificate validation of the TLS protocol allows remote Man-in-the-Middle attack due to missing proper validation...

7.1CVSS5.8AI score0.00095EPSS

Exploits0References1

NVD•added 2025/06/24 1:15 p.m.•3 views

CVE-2025-39205

A vulnerability exists in the IEC 61850 in MicroSCADA X SYS600 product. The certificate validation of the TLS protocol allows remote Man-in-the-Middle attack due to missing proper validation...

7.1CVSS0.00095EPSS

Exploits0References1

OSV•added 2025/06/24 12:15 p.m.•2 views

CVE-2025-39202

A vulnerability exists in in the Monitor Pro interface of the MicroSCADA X SYS600 product. An authenticated user with low privileges can see and overwrite files causing information leak and data corruption...

8.1CVSS5.8AI score

Exploits0References1

NVD•added 2025/06/24 12:15 p.m.•1 views

CVE-2025-39203

7.1CVSS0.00103EPSS

Exploits0References1

NVD•added 2025/06/24 12:15 p.m.•2 views

CVE-2025-39201

A vulnerability exists in MicroSCADA X SYS600 product. If exploited this could allow a local unauthenticated attacker to tamper a system file, making denial of Notify service...

6.9CVSS0.00084EPSS

Exploits0References1

OSV•added 2025/06/24 12:15 p.m.•0 views

CVE-2025-39201

A vulnerability exists in MicroSCADA X SYS600 product. If exploited this could allow a local unauthenticated attacker to tamper a system file, making denial of Notify service...

6.1CVSS5.8AI score

Exploits0References1

NVD•added 2025/06/24 12:15 p.m.•3 views

CVE-2025-39202

8.3CVSS0.00148EPSS

Exploits0References1

NVD•added 2025/06/24 12:15 p.m.•20 views

CVE-2025-39204

A vulnerability exists in the Web interface of the MicroSCADA X SYS600 product. The filtering query in the Web interface can be malformed, so returning data can leak unauthorized information to the user...

8.5CVSS0.00259EPSS

Exploits0References1

OSV•added 2025/06/24 12:15 p.m.•1 views

CVE-2025-39203

7.1CVSS5.8AI score0.00103EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by