CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-4872

A vulnerability exists in the query validation of the MicroSCADA Pro/X SYS600 product. If exploited this could allow an authenticated attacker to inject code towards persistent data. Note that to successfully exploit this vulnerability an attacker must have a valid credential.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.1%

CVSS Severity

CVSS v3 Score 9.9

References

https://publisher.hitachienergy.com/preview?DocumentID=8DBD000160&LanguageCode=en&DocumentPartId=&Action=Launch

Products affected by CVE-2024-4872

Hitachienergy » Microscada Pro Sys600 » Version: 9.4

cpe:2.3:a:hitachienergy:microscada_pro_sys600:9.4
Hitachienergy » Microscada X Sys600 » Version: 10.0

cpe:2.3:a:hitachienergy:microscada_x_sys600:10.0
Hitachienergy » Microscada X Sys600 » Version: 10.1

cpe:2.3:a:hitachienergy:microscada_x_sys600:10.1
Hitachienergy » Microscada X Sys600 » Version: 10.1.1

cpe:2.3:a:hitachienergy:microscada_x_sys600:10.1.1
Hitachienergy » Microscada X Sys600 » Version: 10.2

cpe:2.3:a:hitachienergy:microscada_x_sys600:10.2
Hitachienergy » Microscada X Sys600 » Version: 10.2.1

cpe:2.3:a:hitachienergy:microscada_x_sys600:10.2.1
Hitachienergy » Microscada X Sys600 » Version: 10.3

cpe:2.3:a:hitachienergy:microscada_x_sys600:10.3
Hitachienergy » Microscada X Sys600 » Version: 10.3.1

cpe:2.3:a:hitachienergy:microscada_x_sys600:10.3.1
Hitachienergy » Microscada X Sys600 » Version: 10.4

cpe:2.3:a:hitachienergy:microscada_x_sys600:10.4
Hitachienergy » Microscada X Sys600 » Version: 10.5

cpe:2.3:a:hitachienergy:microscada_x_sys600:10.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-4872

Products

Pricing

Contact Us