Filter

Hitachienergy Microscada X Sys600An HTTP parameter may contain a URL value and could cause the web application to redirect the reques…

EPSS
0.05%
First published (updated )

Hitachienergy Microscada X Sys600The product exposes a service that is intended for local only to all network interfaces without any …

EPSS
0.09%
First published (updated )

Hitachienergy Microscada X Sys600An attacker with local access to machine where MicroSCADA X SYS600 is installed, could enable the se…

8.2
First published (updated )

Hitachienergy Microscada Pro Sys600Path Traversal

First published (updated )

Hitachienergy Microscada Pro Sys600A vulnerability exists in the query validation of the MicroSCADA Pro/X SYS600 product. If exploited …

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Hitachienergy Microscada X Sys600Input Validation Vulnerability in Hitachi Energy’s MicroSCADA Pro/X SYS600 Products

8.8
First published (updated )

Hitachienergy Microscada X Sys600A vulnerability exists in the handling of a malformed IEC 104 TCP packet. Upon receiving a malformed IEC 104 TCP packet, the malformed packet is dropped, however the TCP connection is left open. This may cause a denial-of-service if the affected conne ...

7.5
First published (updated )

Hitachienergy Microscada X Sys600A vulnerability exists during the start of the affected SYS600, where an input validation flaw causes a buffer-overflow while reading a specific configuration file. Subsequently SYS600 will fail to start. The configuration file can only be accessed by ...

First published (updated )

Hitachienergy Microscada X Sys600A vulnerability exists in the handling of a specially crafted IEC 61850 packet with a valid data item but with incorrect data type in the IEC 61850 OPC Server. The vulnerability may cause a denial-of-service on the IEC 61850 OPC Server part of the SYS ...

7.5
First published (updated )

Hitachienergy Microscada X Sys600A vulnerability exists in the ICCP stack of the affected SYS600 versions due to validation flaw in the process that establishes the ICCP communication. The validation flaw will cause a denial-of-service when ICCP of SYS600 is request to forward any da ...

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Hitachienergy Microscada X Sys600A vulnerability exists in the Workplace X WebUI in which an authenticated user is able to execute any MicroSCADA internal scripts irrespective of the authenticated user's role.

8.8
First published (updated )

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203