Lucene search
K

94 matches found

CNNVD
CNNVD
added 2024/08/27 12:0 a.m.3 views

Hitachi Energy MicroSCADA X SYS600 SQL注入漏洞

Hitachi Energy MicroSCADA X SYS600 is a SCADA product from Hitachi, Japan. It ensures optimal control and reliable operation of your switching station through seamless integration and connectivity between different devices and systems. A SQL injection vulnerability exists in Hitachi Energy...

9.9CVSS9.4AI score0.00496EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/27 12:0 a.m.3 views

Hitachi Energy MicroSCADA X SYS600 安全漏洞

Hitachi Energy MicroSCADA X SYS600 is a SCADA product from Hitachi, Japan. It ensures optimal control and reliable operation of your switching station through seamless integration and connectivity between different devices and systems. A security vulnerability exists in Hitachi Energy MicroSCADA ...

4.3CVSS6.5AI score0.00316EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/27 12:0 a.m.6 views

PT-2024-8680 · Unknown · Microscada X Sys600

Name of the Vulnerable Software and Affected Versions: MicroSCADA X SYS600 affected versions not specified Description: The issue is related to bypassing the authentication procedure in the MicroSCADA X SYS600 system. An attacker with local access to the machine where MicroSCADA X SYS600 is...

8.2CVSS6.8AI score0.00217EPSS
Exploits0References11
ICS
ICS
added 2023/05/18 7:1 p.m.51 views

Hitachi Energy’s MicroSCADA Pro/X SYS600 Products

1. EXECUTIVE SUMMARY CVSS v3 6.7 ATTENTION: Public exploits are available Vendor: Hitachi Energy Equipment: MicroSCADA Pro/X SYS600 Products Vulnerabilities: Permissions, Privileges, and Access Controls 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to...

9.3CVSS7.5AI score0.05261EPSS
Exploits0References7
ICS
ICS
added 2022/11/29 7:0 a.m.64 views

Hitachi Energy MicroSCADA Pro/X SYS600 Products (Update A)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION : Low attack complexity Vendor : Hitachi Energy Equipment : MicroSCADA X SYS600, MicroSCADA Pro Vulnerability : Improper Use of Validation Framework 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthorized...

8.8CVSS8.5AI score0.00277EPSS
Exploits0References8
CISA
CISA
added 2022/11/29 12:0 a.m.26 views

CISA Releases Seven Industrial Control Systems Advisories

CISA released seven 7 Industrial Control Systems ICS advisories on November 29, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for...

0.2AI score
Exploits0References7
CNVD
CNVD
added 2022/11/23 12:0 a.m.65 views

ABB MicroSCADA Pro SYS600 Code Execution Vulnerability

ABB MicroSCADA Pro SYS600 is a suite of monitoring and data acquisition software from ABB Switzerland. The software is used for substation automation, SCADA electrical, distribution management applications and industrial power management. ABB MicroSCADA Pro SYS600 suffers from a code execution...

8.8CVSS8AI score0.00277EPSS
Exploits0References1
OSV
OSV
added 2022/11/21 7:15 p.m.3 views

CVE-2022-3388

An input validation vulnerability exists in the Monitor Pro interface of MicroSCADA Pro and MicroSCADA X SYS600. An authenticated user can launch an administrator level remote code execution irrespective of the authenticated user's role...

7.8CVSS6.3AI score
Exploits0References1
NVD
NVD
added 2022/11/21 7:15 p.m.70 views

CVE-2022-3388

An input validation vulnerability exists in the Monitor Pro interface of MicroSCADA Pro and MicroSCADA X SYS600. An authenticated user can launch an administrator level remote code execution irrespective of the authenticated user's role...

8.8CVSS0.00277EPSS
Exploits0References1
Prion
Prion
added 2022/11/21 7:15 p.m.17 views

Input validation

An input validation vulnerability exists in the Monitor Pro interface of MicroSCADA Pro and MicroSCADA X SYS600. An authenticated user can launch an administrator level remote code execution irrespective of the authenticated user's role...

4.3CVSS7.8AI score0.00277EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2022/11/21 12:0 a.m.17 views

PT-2022-21881 · Unknown · Microscada X Sys600 +1

Name of the Vulnerable Software and Affected Versions: MicroSCADA Pro affected versions not specified MicroSCADA X SYS600 affected versions not specified Description: An input validation issue exists in the Monitor Pro interface, allowing an authenticated user to perform administrator-level remot...

8.8CVSS7.9AI score0.00277EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/11/21 12:0 a.m.62 views

CVE-2022-3388 Input Validation Vulnerability in Hitachi Energy’s MicroSCADA Pro/X SYS600 Products

An input validation vulnerability exists in the Monitor Pro interface of MicroSCADA Pro and MicroSCADA X SYS600. An authenticated user can launch an administrator level remote code execution irrespective of the authenticated user's role...

8.8CVSS9.1AI score0.00277EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/11/21 12:0 a.m.5 views

ABB MicroSCADA Pro SYS600 输入验证错误漏洞

ABB MicroSCADA Pro SYS600 is a suite of monitoring and data acquisition software from ABB Switzerland. The software is used for substation automation, SCADA electrical, distribution management applications and industrial power management. ABB MicroSCADA Pro SYS600 suffers from a code execution...

8.8CVSS7.5AI score0.00277EPSS
Exploits0References2
CVE
CVE
added 2022/11/21 12:0 a.m.79 views

CVE-2022-3388

CVE-2022-3388 affects Hitachi Energy MicroSCADA Pro and MicroSCADA X SYS600. The vulnerability is an input-validation flaw in the Monitor Pro interface (improper use of a validation framework) that allows an authenticated user to perform administrator-level remote code execution regardless of the...

8.8CVSS8.1AI score0.00277EPSS
Exploits0References1Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/10/13 12:0 a.m.5 views

The vulnerability of the ICCP component of the Hitachi Energy MicroSCADA X SYS600 software system allows a intruder to perform maintenance-related malfunctions.

The vulnerability of the ICCP component of the Hitachi Energy MicroSCADA X SYS600 system management software exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor to perform maintenance operations remotely...

7.8CVSS7.1AI score0.00652EPSS
Exploits0References4Affected Software1
CISA
CISA
added 2022/09/29 12:0 a.m.14 views

CISA Releases Six Industrial Control Systems Advisories

CISA has released six 6 Industrial Control Systems ICS advisories on September 29, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisory for...

0.7AI score
Exploits0References6
ICS
ICS
added 2022/09/29 12:0 a.m.62 views

Hitachi Energy MicroSCADA Pro X SYS600

1. EXECUTIVE SUMMARY CVSS v3 8.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: MicroSCADA Pro/X SYS600 Vulnerability: Improper Input Validation, Improper Privilege Management, Improper Access Control, Improper Handling of Unexpected Data Type. 2. RISK...

8.8CVSS6.9AI score0.00672EPSS
Exploits0References5
ICS
ICS
added 2022/09/29 12:0 a.m.52 views

Hitachi Energy MicroSCADA Pro X SYS600

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: MicroSCADA Pro/X SYS600 Vulnerability: NULL Pointer Dereference, Infinite Loop 2. RISK EVALUATION Successful exploitation of these vulnerabilities could cause the affected...

7.5CVSS8.9AI score0.70561EPSS
Exploits2References5
OSV
OSV
added 2022/09/14 6:15 p.m.6 views

CVE-2022-29492

Improper Input Validation vulnerability in the handling of a malformed IEC 104 TCP packet in the Hitachi Energy MicroSCADA X SYS600, MicroSCADA Pro SYS600. Upon receiving a malformed IEC 104 TCP packet, the malformed packet is dropped, however the TCP connection is left open. This may cause a...

7.5CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2022/09/14 6:15 p.m.5 views

CVE-2022-29922

Improper Input Validation vulnerability in the handling of a specially crafted IEC 61850 packet with a valid data item but with incorrect data type in the IEC 61850 OPC Server in the Hitachi Energy MicroSCADA X SYS600, MicroSCADA Pro SYS600. The vulnerability may cause a denial-of-service on the...

7.5CVSS5.8AI score0.00672EPSS
Exploits0References1
Rows per page
Query Builder