EUVD-2024-27566

Malicious code in bioql PyPI...

EUVD-2022-33055

Malicious code in bioql PyPI...

EUVD-2022-34371

Malicious code in bioql PyPI...

EUVD-2024-54517

Malicious code in bioql PyPI...

EUVD-2024-54521

Malicious code in bioql PyPI...

CVE-2024-11499

A vulnerability exists in RTU500 IEC 60870-4-104 controlled station functionality, that allows an authenticated and authorized attacker to perform a CMU restart. The vulnerability can be triggered if certificates are updated while in use on active connections. The affected CMU will automatically...

CVE-2024-11499

A vulnerability exists in RTU500 IEC 60870-4-104 controlled station functionality, that allows an authenticated and authorized attacker to perform a CMU restart. The vulnerability can be triggered if certificates are updated while in use on active connections. The affected CMU will automatically...

CVE-2024-12169

The CVE-2024-12169 entry involves Hitachi Energy RTU500 series, affecting the RTU500 IEC 60870-5-104 controlled-station functionality and IEC 61850 functionality. The described impact is that an attacker performing a specific attack sequence can restart the affected CMU, and this only applies whe...

CVE-2024-11499

CVE-2024-11499 – Hitachi Energy RTU500 : The RTU500 IEC 60870-4-104 controlled-station functionality is affected. An authenticated and authorized attacker can trigger a CMU restart by updating certificates while they are in use on active connections. The affected CMU is described as automatically...

CVE-2024-10037

CVE-2024-10037 affects Hitachi Energy RTU500 web server component and can cause a denial of service to the RTU500 CMU application when a specially crafted WebSocket message sequence is processed. Exploitation requires proper authentication and the RTU500 test mode to be enabled; the affected CMU ...

CVE-2024-10037

A vulnerability exists in the RTU500 web server component that can cause a denial of service to the RTU500 CMU application if a specially crafted message sequence is executed on a WebSocket connection. An attacker must be properly authenticated and the test mode function of RTU500 must be enabled...

CVE-2024-2617

A vulnerability exists in the RTU500 that allows for authenticated and authorized users to bypass secure update, if secure update feature was not enabled on all CMUs of a RTU500. If a malicious actor successfully exploits this vulnerability, they could use it to update the RTU500 with unsigned...

CVE-2022-2502

A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-5 and the CMU contains the license feature ‘Advanced security’ which must ...