| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-3927 | The affected products store public and private key that are used to sign and protect custom parameter set files from modification. | Hitachi Energy | FOXMAN-UN | High | 8.0 | 2023-01-05 21:41:38 | Deep Dive |
| CVE-2021-40342 | Use of default key for encryption | Hitachi Energy | FOXMAN-UN | High | 7.1 | 2023-01-05 21:27:03 | Deep Dive |
| CVE-2021-40341 | Weak DES encryption | Hitachi Energy | FOXMAN-UN | High | 7.1 | 2023-01-05 21:26:43 | Deep Dive |
| CVE-2022-2513 | Cleartext Credentials Vulnerability on Hitachi Energy’s Multiple IED Connectivity Packages (IED ConnPacks) and PCM600 Products | Hitachi Energy | PCM600 | High | 7.1 | 2022-11-22 10:30:34 | Deep Dive |
| CVE-2022-3388 | Input Validation Vulnerability in Hitachi Energy’s MicroSCADA Pro/X SYS600 Products | Hitachi Energy | MicroSCADA Pro SYS600 | High | 8.8 | 2022-11-21 00:00:00 | Deep Dive |
| CVE-2022-29492 | A vulnerability exists in the handling of a malformed IEC 104 TCP packet. Upon receiving a malformed IEC 104 TCP packet, the malformed packet is dropped, however the TCP connection is left open. This may cause a denial-of-service if the affected conne ... | Hitachi Energy | MicroSCADA X SYS600 | Medium | 5.3 | 2022-09-14 17:07:31 | Deep Dive |
| CVE-2022-1778 | A vulnerability exists during the start of the affected SYS600, where an input validation flaw causes a buffer-overflow while reading a specific configuration file. Subsequently SYS600 will fail to start. The configuration file can only be accessed by ... | Hitachi Energy | MicroSCADA X SYS600 | High | 7.5 | 2022-09-14 17:05:37 | Deep Dive |
| CVE-2022-29922 | A vulnerability exists in the handling of a specially crafted IEC 61850 packet with a valid data item but with incorrect data type in the IEC 61850 OPC Server. The vulnerability may cause a denial-of-service on the IEC 61850 OPC Server part of the SYS ... | Hitachi Energy | MicroSCADA X SYS600 | High | 7.5 | 2022-09-14 17:03:34 | Deep Dive |
| CVE-2022-2277 | A vulnerability exists in the ICCP stack of the affected SYS600 versions due to validation flaw in the process that establishes the ICCP communication. The validation flaw will cause a denial-of-service when ICCP of SYS600 is request to forward any da ... | Hitachi Energy | MicroSCADA X SYS600 | High | 7.5 | 2022-09-14 17:02:01 | Deep Dive |
| CVE-2022-29490 | A vulnerability exists in the Workplace X WebUI in which an authenticated user is able to execute any MicroSCADA internal scripts irrespective of the authenticated user's role. | Hitachi Energy | MicroSCADA X SYS600 | High | 8.5 | 2022-09-12 19:24:04 | Deep Dive |
| CVE-2021-40336 | HTTP Response Splitting in Hitachi Energy’s MSM Product | Hitachi Energy | MSM | Medium | 5.0 | 2022-07-25 14:34:20 | Deep Dive |
| CVE-2021-40335 | Cross Site Request Forgery (CSRF) in Hitachi Energy’s MSM Product | Hitachi Energy | MSM | Medium | 5.0 | 2022-07-25 14:32:14 | Deep Dive |
| CVE-2021-35530 | User authentication bypass in TXpert Hub CoreTec 4 | Hitachi Energy | TXpert Hub CoreTec 4 version | Medium | 6.0 | 2022-06-07 20:17:08 | Deep Dive |
| CVE-2021-35531 | Remote Code Execution in TXpert Hub CoreTec 4 | Hitachi Energy | TXpert Hub CoreTec 4 version | 中危 | - | 2022-06-07 20:07:37 | Deep Dive |
| CVE-2021-35532 | Firmware upload verification bypass in TXpert Hub CoreTec 4 | Hitachi Energy | TXpert Hub CoreTec 4 version | 中危 | - | 2022-06-07 20:04:15 | Deep Dive |
| CVE-2022-28613 | Specially Crafted Modbus TCP Packet Vulnerability in RTU500 series | Hitachi Energy | RTU500 series CMU Firmware | High | 7.5 | 2022-05-02 19:01:06 | Deep Dive |
| CVE-2021-40337 | OWASP Related Vulnerabilities in Hitachi Energy’s LinkOne Product | Hitachi Energy | LinkOne | Medium | 4.2 | 2022-01-25 19:11:15 | Deep Dive |
| CVE-2021-40333 | Weak default credential associated with TCP port 26 | Hitachi Energy | FOX61x | Critical | 9.0 | 2021-12-02 18:29:37 | Deep Dive |
| CVE-2021-40334 | SSH activation problem in the proprietary management protocol (port TCP 5558) | Hitachi Energy | FOX61x | High | 8.6 | 2021-12-02 18:28:19 | Deep Dive |
| CVE-2021-35533 | Specially Crafted IEC 60870-5-104 Packet Vulnerability in RTU500 series | Hitachi Energy | RTU500 series | High | 7.5 | 2021-11-26 16:37:28 | Deep Dive |