Overview
- Description
- A vulnerability exists in the query validation of the MicroSCADA Pro/X SYS600 product. If exploited this could allow an authenticated attacker to inject code towards persistent data. Note that to successfully exploit this vulnerability an attacker must have a valid credential.
- Source
- cybersecurity@hitachienergy.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
- cybersecurity@hitachienergy.com
- CWE-943
Social media
- Hype score
- Not currently trending
Actively exploited CVE : CVE-2024-4872
@transilienceai
29 Oct 2024
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Actively exploited CVE : CVE-2024-4872
@transilienceai
25 Oct 2024
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Actively exploited CVE : CVE-2024-4872
@transilienceai
23 Oct 2024
10 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Actively exploited CVE : CVE-2024-4872
@transilienceai
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:hitachienergy:microscada_pro_sys600:9.4:fixpack_2_hf1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0B90ED6E-68E4-4C14-B275-F44BAC1B9C5C"
},
{
"criteria": "cpe:2.3:a:hitachienergy:microscada_pro_sys600:9.4:fixpack_2_hf2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "196E08EA-807C-4B7B-981A-96D106AC328B"
},
{
"criteria": "cpe:2.3:a:hitachienergy:microscada_pro_sys600:9.4:fixpack_2_hf3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "680FAE83-9D7A-4AD9-AFBE-480FD105ADC9"
},
{
"criteria": "cpe:2.3:a:hitachienergy:microscada_pro_sys600:9.4:fixpack_2_hf4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "014C8428-8F88-4C3D-B9B1-87DE26867471"
},
{
"criteria": "cpe:2.3:a:hitachienergy:microscada_pro_sys600:9.4:fixpack_2_hf5:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "06AFA271-0785-4526-B7DA-FA00672CC5B5"
},
{
"criteria": "cpe:2.3:a:hitachienergy:microscada_x_sys600:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AEAAFA90-ACFF-47E2-A23D-728912D74B99",
"versionEndExcluding": "10.6",
"versionStartIncluding": "10.0"
}
],
"operator": "OR"
}
]
}
]