Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
energy vulnerabilities and exploits
(subscribe to this query)
8
CVSSv3
CVE-2024-2378
A vulnerability exists in the web-authentication component of the SDM600. If exploited an attacker could escalate privileges on af-fected installations.
7.2
CVSSv3
CVE-2024-41153
Command injection vulnerability in the Edge Computing UI for the TRO600 series radios that allows for the execution of arbitrary system commands. If exploited, an attacker with write access to the web UI can execute commands on the device with root privileges, far more extensive ...
Hitachienergy Tro610 Firmware
Hitachienergy Tro620 Firmware
Hitachienergy Tro670 Firmware
2.7
CVSSv3
CVE-2024-41156
Profile files from TRO600 series radios are extracted in plain-text and encrypted file formats. Profile files provide potential attackers valuable configuration information about the Tropos network. Profiles can only be exported by authenticated users with higher privilege of wri...
Hitachienergy Tro610 Firmware
Hitachienergy Tro620 Firmware
Hitachienergy Tro670 Firmware
9.8
CVSSv3
CVE-2024-2012
vulnerability exists in the FOXMAN-UN/UNEM server / API Gateway that if exploited an attacker could use to allow unintended commands or code to be executed on the UNEM server allowing sensitive data to be read or modified or could cause other unintended behavior
Hitachienergy Foxman-un R15a
Hitachienergy Foxman-un R15b
Hitachienergy Foxman-un R16a
Hitachienergy Foxman-un R16b
Hitachienergy Unem R15a
Hitachienergy Unem R15b
Hitachienergy Unem R16a
Hitachienergy Unem R16b
9.8
CVSSv3
CVE-2024-2011
A heap-based buffer overflow vulnerability exists in the FOXMAN-UN/UNEM that if exploited will generally lead to a denial of service but can be used to execute arbitrary code, which is usually outside the scope of a program's implicit security policy
Hitachienergy Foxman-un R15a
Hitachienergy Foxman-un R15b
Hitachienergy Foxman-un R16a
Hitachienergy Foxman-un R16b
Hitachienergy Unem R15a
Hitachienergy Unem R15b
Hitachienergy Unem R16a
Hitachienergy Unem R16b
7.5
CVSSv3
CVE-2024-2097
Authenticated List control client can execute the LINQ query in SCM Server to present event as list for operator. An authenticated malicious client can send special LINQ query to execute arbitrary code remotely (RCE) on the SCM Server that an attacker otherwise does not have auth...
8
CVSSv3
CVE-2024-28020
A user/password reuse vulnerability exists in the FOXMAN-UN/UNEM application and server management. If exploited a malicious high-privileged user could use the passwords and login information through complex routines to extend access on the server and other services.
Hitachienergy Foxman-un R15a
Hitachienergy Foxman-un R15b
Hitachienergy Foxman-un R16a
Hitachienergy Foxman-un R16b
Hitachienergy Unem R15a
Hitachienergy Unem R15b
Hitachienergy Unem R16a
Hitachienergy Unem R16b
7.4
CVSSv3
CVE-2024-28021
A vulnerability exists in the FOXMAN-UN/UNEM server that affects the message queueing mechanism’s certificate validation. If exploited an attacker could spoof a trusted entity causing a loss of confidentiality and integrity.
Hitachienergy Foxman-un R15b
Hitachienergy Foxman-un R16b
Hitachienergy Foxman Un R15a
Hitachienergy Foxman Un R16a
Hitachienergy Unem R15a
Hitachienergy Unem R15b
Hitachienergy Unem R16a
Hitachienergy Unem R16b
6.5
CVSSv3
CVE-2024-28022
A vulnerability exists in the UNEM server / APIGateway that if exploited allows a malicious user to perform an arbitrary number of authentication attempts using different passwords, and eventually gain access to other components in the same security realm using the targeted accou...
Hitachienergy Foxman-un R15a
Hitachienergy Foxman-un R15b
Hitachienergy Foxman-un R16a
Hitachienergy Foxman-un R16b
Hitachienergy Unem R15a
Hitachienergy Unem R15b
Hitachienergy Unem R16a
Hitachienergy Unem R16b
5.7
CVSSv3
CVE-2024-28023
A vulnerability exists in the message queueing mechanism that if exploited can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or even execute arbitrary code.
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
XML external entity
remote code execution
CVE-2024-44136
CVE-2025-21321
CVE-2024-41454
CVE-2024-55503
insecure direct object reference
CVE-2025-20088
CVE-2024-44243
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »