Lucene search
+L

10 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-22168

Malware in sbrugna...

7.2CVSS6.6AI score0.00162EPSS
Exploits0References2
ics
ics
added 2022/09/13 12:0 a.m.44 views

Hitachi Energy TXpert Hub CoreTec 4 Sudo Vulnerability

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Hitachi Energy Equipment: TXpert Hub CoreTec 4 Vulnerability: Off-by-one Error 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to take control of the system node and its information...

7.8CVSS9AI score0.99295EPSS
Exploits81References5
ics
ics
added 2022/09/06 12:0 a.m.42 views

Hitachi Energy TXpert Hub CoreTec 4

1. EXECUTIVE SUMMARY CVSS v3 6.0 Vendor: Hitachi Energy Equipment: TXpert Hub CoreTec 4 Vulnerabilities: Authentication Bypass Using an Alternate Path or Channel, Improper Input Validation, Download of Code Without Integrity Check 2. RISK EVALUATION Successful exploitation of these...

7.2CVSS7.6AI score0.00253EPSS
Exploits0References5
nvd
nvd
added 2022/06/07 9:15 p.m.22 views

CVE-2021-35530

A vulnerability in the application authentication and authorization mechanism in Hitachi Energy's TXpert Hub CoreTec 4, that depends on a token validation of the session identifier, allows an unauthorized modified message to be executed in the server enabling an unauthorized actor to change an...

7.2CVSS0.00214EPSS
Exploits0References1
prion
prion
added 2022/06/07 9:15 p.m.14 views

Input validation

Improper Input Validation vulnerability in a particular configuration setting field of Hitachi Energy TXpert Hub CoreTec 4 product, allows an attacker with access to an authorized user with ADMIN or ENGINEER role rights to inject an OS command that is executed by the system. This issue affects:...

7.2CVSS6.5AI score0.00253EPSS
Exploits0References1Affected Software1
prion
prion
added 2022/06/07 9:15 p.m.17 views

Design/Logic Flaw

A vulnerability in the application authentication and authorization mechanism in Hitachi Energy's TXpert Hub CoreTec 4, that depends on a token validation of the session identifier, allows an unauthorized modified message to be executed in the server enabling an unauthorized actor to change an...

7.2CVSS6.6AI score0.00214EPSS
Exploits0References1Affected Software1
cve
cve
added 2022/06/07 8:17 p.m.69 views

CVE-2021-35530

The CVE-2021-35530 vulnerability affects Hitachi Energy TXpert Hub CoreTec 4, versions 2.0.0 through 2.2.1, in its authentication/authorization flow where session-token validation can be bypassed. This can allow an unauthorized actor to modify a user’s password and gain unauthorized access via th...

7.2CVSS6.4AI score0.00214EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2022/06/07 8:17 p.m.30 views

CVE-2021-35530 User authentication bypass in TXpert Hub CoreTec 4

A vulnerability in the application authentication and authorization mechanism in Hitachi Energy's TXpert Hub CoreTec 4, that depends on a token validation of the session identifier, allows an unauthorized modified message to be executed in the server enabling an unauthorized actor to change an...

6CVSS6.9AI score0.00214EPSS
Exploits0References1
cve
cve
added 2022/06/07 8:7 p.m.72 views

CVE-2021-35531

CVE-2021-35531 applies to Hitachi Energy TXpert Hub CoreTec 4. Affected versions: 2.0.0–2.2.1. Root cause: Improper Input Validation in a particular configuration setting field. Attack scenario: an attacker with access to an authorized user with ADMIN or ENGINEER rights can inject an OS command t...

7.2CVSS6.5AI score0.00253EPSS
Exploits0References1Affected Software1
cve
cve
added 2022/06/07 8:4 p.m.78 views

CVE-2021-35532

CVE-2021-35532 is a vulnerability in the file upload validation component of Hitachi Energy TXpert Hub CoreTec 4. Affected versions are 2.0.0, 2.0.1, 2.1.0–2.2.1. The issue allows an attacker who has system access and a privileged account to upload a malicious firmware image, potentially compromi...

7.2CVSS6.7AI score0.00162EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder