Hitachienergy: >> Microscada Pro Sys600 Security Vulnerabilities
The MicroSCADA Pro/X SYS600 product allows an authenticated user input to control or influence paths or file names
that are used in filesystem operations. If exploited the vulnerability allows the attacker to access or modify system files or
other files that are critical to the application.
CVSS Score
9.9
EPSS Score
0.002
Published
2024-08-27
A vulnerability exists in the query validation of the MicroSCADA Pro/X SYS600 product. If exploited this could allow an authenticated attacker to inject code towards persistent data. Note that to successfully exploit this vulnerability
an attacker must have a valid credential.
CVSS Score
9.9
EPSS Score
0.003
Published
2024-08-27
An input validation vulnerability exists in the Monitor Pro interface of MicroSCADA
Pro and MicroSCADA X SYS600. An authenticated user can launch an administrator level remote code execution irrespective of the authenticated user's role.
CVSS Score
8.8
EPSS Score
0.002
Published
2022-11-21
ABB MicroSCADA Pro SYS600 version 9.3 suffers from an instance of CWE-306: Missing Authentication for Critical Function.
CVSS Score
9.8
EPSS Score
0.729
Published
2020-04-29