Hitachienergy: >> Microscada X Sys600 >> 10.6 Security Vulnerabilities
A vulnerability exists in the IEC 61850 in MicroSCADA X SYS600 product. The certificate validation of the TLS protocol allows remote Man-in-the-Middle attack due to missing proper validation.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-06-24
A vulnerability exists in MicroSCADA X SYS600 product. If exploited this could allow a local unauthenticated attacker to tamper a system file, making denial of Notify service.
CVSS Score
6.1
EPSS Score
0.001
Published
2025-06-24
A vulnerability exists in in the Monitor Pro interface of the MicroSCADA X SYS600 product. An authenticated user with low privileges can see and overwrite files causing information leak and data corruption.
CVSS Score
7.3
EPSS Score
0.0
Published
2025-06-24
A vulnerability exists in the IEC 61850 of the MicroSCADA X SYS600 product. An IEC 61850-8 crafted message content from IED or remote system can cause a denial of service resulting in disconnection loop.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-06-24
A vulnerability exists in the Web interface of the MicroSCADA X SYS600 product. The filtering query in the Web interface can be malformed, so returning data can leak unauthorized information to the user.
CVSS Score
6.5
EPSS Score
0.001
Published
2025-06-24