Vulnerabilidades en Hitachi Energy
105 resultadosCVE-2026-1773HIGHIEC 60870-5-104 used in RTU500: Potential Denial of Service impact on reception of invalid U-format frame. Product is only affected if IEC 6EPSS 0.4%CVE-2021-40336MEDIUMHTTP Response Splitting in Hitachi Energy’s MSM ProductEPSS 0.4%CVE-2023-5769MEDIUM
A vulnerability exists in the webserver that affects the
RTU500 series product versions listed below. A malicious
actor could perform croEPSS 0.4%CVE-2021-40337MEDIUMOWASP Related Vulnerabilities in Hitachi Energy’s LinkOne ProductEPSS 0.4%CVE-2023-5767MEDIUM
A vulnerability exists in the webserver that affects the
RTU500 series product versions listed below. A malicious
actor could perform croEPSS 0.4%CVE-2022-3929HIGHCommunication between the client and server partially using CORBA over TCP/IPEPSS 0.4%CVE-2024-9928MEDIUMA vulnerability exists in NSD570 login panel that does not restrict excessive authentication attempts. If exploited, this could
cause accounEPSS 0.4%CVE-2023-5514MEDIUM
The response messages received from the eSOMS report generation using certain parameter queries with full file path can be
abused for enumeEPSS 0.4%CVE-2023-5515MEDIUM
The responses for web queries with certain parameters disclose internal path of resources. This information can be used to learn internal sEPSS 0.4%CVE-2023-5516MEDIUM
Poorly constructed webap requests and URI components with special characters trigger unhandled errors and exceptions, disclosing
informatioEPSS 0.4%CVE-2022-2155MEDIUMA vulnerability exists in the Lumada APM’s User Asset Group feature due to a flaw in access control mechanism implementation on the “Limited Engineer” role. EPSS 0.4%CVE-2024-2244MEDIUMREST service authentication anomaly with “valid username/no password” credential combination for batch job processing resulting in successfuEPSS 0.4%CVE-2024-28020HIGHA user/password reuse vulnerability exists in the FOXMAN-UN/UNEM application
and server management. If exploited a malicious high-privilegedEPSS 0.4%CVE-2024-12169HIGHA vulnerability exists in RTU500 IEC 60870-5-104 controlled station functionality and IEC 61850 functionality, that allows an attacker perfoEPSS 0.4%CVE-2024-41156LOWProfile files from TRO600 series radios are extracted in plain-text
and encrypted file formats. Profile files provide potential attackers
vaEPSS 0.4%CVE-2024-28022MEDIUMA vulnerability exists in the UNEM server / APIGateway that if exploited allows a malicious user to perform an arbitrary number of
authenticEPSS 0.4%CVE-2023-2622LOW
Authenticated clients can read arbitrary files on the MAIN Computer
system using the remote procedure call (RPC) of the InspectSetup
servicEPSS 0.4%CVE-2022-3864MEDIUM
A vulnerability exists in the Relion update package signature validation. A tampered update package could cause the IED to restart. After rEPSS 0.4%CVE-2025-1718HIGHAn authenticated user with file access privilege via FTP access can cause the Relion 670/650 and SAM600-IO series device to reboot due to imEPSS 0.3%CVE-2022-3685HIGHSDM600 software privilege levelEPSS 0.3%