Home/Product/hitachienergy microscada x sys600
Product

hitachienergy microscada x sys600

16 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-39205
>= 10.3 and < 10.7
A vulnerability exists in the IEC 61850 in MicroSCADA X SYS600 product. The certificate validation of the TLS protocol allows remo
6.5MEDIUM
 CVE-2025-39204
>= 10.0 and < 10.7
A vulnerability exists in the Web interface of the MicroSCADA X SYS600 product. The filtering query in the Web interface can be ma
6.5MEDIUM
 CVE-2025-39203
>= 10.5 and < 10.7
A vulnerability exists in the IEC 61850 of the MicroSCADA X SYS600 product. An IEC 61850-8 crafted message content from IED or rem
6.5MEDIUM
 CVE-2025-39202
>= 10.0 and < 10.7
A vulnerability exists in the Monitor Pro interface of the MicroSCADA X SYS600 product. An authenticated user with low privileg
7.3HIGH
 CVE-2025-39201
>= 10.0 and < 10.7
A vulnerability exists in MicroSCADA X SYS600 product. If exploited this could allow a local unauthenticated attacker to tamper a
6.1MEDIUM
 CVE-2024-7941
all versions
An HTTP parameter may contain a URL value and could cause the web application to redirect the request to the specified URL. By mod
4.3MEDIUM
 CVE-2024-7940
>= 10.2 and < 10.6
The product exposes a service that is intended for local only to all network interfaces without any authentication.
8.3HIGH
 CVE-2024-4872
>= 10.0 and < 10.6
A vulnerability exists in the query validation of the MicroSCADA Pro/X SYS600 product. If exploited this could allow an authentica
9.9CRITICAL
 CVE-2024-3982
>= 10.0 and < 10.6
An attacker with local access to machine where MicroSCADA X SYS600 is installed, could enable the session logging supporting the p
8.2HIGH
 CVE-2024-3980
>= 10.0 and < 10.6
The MicroSCADA Pro/X SYS600 product allows an authenticated user input to control or influence paths or file names that are used i
9.9CRITICAL
 CVE-2022-3388
all versions
An input validation vulnerability exists in the Monitor Pro interface of MicroSCADA Pro and MicroSCADA X SYS600. An authenticated
8.8HIGH
 CVE-2022-2277
>= 10.2 and <= 10.3.1
Improper Input Validation vulnerability exists in the Hitachi Energy MicroSCADA X SYS600's ICCP stack during the ICCP communicatio
7.5HIGH
 CVE-2022-29922
>= 9.0 and < 10.4
Improper Input Validation vulnerability in the handling of a specially crafted IEC 61850 packet with a valid data item but with in
7.5HIGH
 CVE-2022-29492
>= 9.0 and < 10.4
Improper Input Validation vulnerability in the handling of a malformed IEC 104 TCP packet in the Hitachi Energy MicroSCADA X SYS60
5.3MEDIUM
 CVE-2022-1778
>= 10.0 and <= 10.3.1
Improper Input Validation vulnerability in Hitachi Energy MicroSCADA X SYS600 while reading a specific configuration file causes a
7.5HIGH
 CVE-2022-29490
>= 10.0 and <= 10.3.1
Improper Authorization vulnerability exists in the Workplace X WebUI of the Hitachi Energy MicroSCADA X SYS600 allows an authentic
8.5HIGH
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Recently exploited
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh