Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
energy vulnerabilities and exploits
(subscribe to this query)
4.1
CVSSv3
CVE-2024-28024
A vulnerability exists in the FOXMAN-UN/UNEM in which sensitive information is stored in cleartext within a resource that might be accessible to another control sphere.
Hitachienergy Foxman-un R15a
Hitachienergy Foxman-un R15b
Hitachienergy Foxman-un R16a
Hitachienergy Foxman-un R16b
Hitachienergy Unem R15a
Hitachienergy Unem R15b
Hitachienergy Unem R16a
Hitachienergy Unem R16b
7.5
CVSSv3
CVE-2024-0400
SCM Software is a client and server application. An Authenticated System manager client can execute LINQ query in the SCM server, for customized filtering. An Authenticated malicious client can send a specially crafted code to skip the validation and execute arbitrary code (RCE) ...
10
CVSSv3
CVE-2024-2013
An authentication bypass vulnerability exists in the FOXMAN-UN/UNEM server / API Gateway component that if exploited allows attackers without any access to interact with the services and the post-authentication attack surface.
Hitachienergy Foxman-un R15a
Hitachienergy Foxman-un R15b
Hitachienergy Foxman-un R16a
Hitachienergy Foxman-un R16b
Hitachienergy Unem R15a
Hitachienergy Unem R15b
Hitachienergy Unem R16b
4.3
CVSSv3
CVE-2015-5016
IBM Maximo Asset Management 7.1, 7.5, and 7.6; Maximo Asset Management Essentials 7.1 and 7.5; Control Desk 7.5 and 7.6; Tivoli Asset Management for IT 7.1 and 7.2; and certain other IBM products allow remote authenticated users to bypass intended access restrictions and read arb...
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo For Energy Optimization 7.1
Ibm Maximo For Aviation 7.6
Ibm Maximo For Government 7.1
Ibm Maximo For Government 7.5
Ibm Maximo For Nuclear Power 7.1
Ibm Maximo For Nuclear Power 7.5
Ibm Maximo For Transportation 7.1
5.4
CVSSv3
CVE-2015-5017
IBM Maximo Asset Management 7.1 up to and including 7.1.1.13, 7.5.0 prior to 7.5.0.8 IFIX005, and 7.6.0 prior to 7.6.0.2 IFIX002; Maximo Asset Management 7.5.0 prior to 7.5.0.8 IFIX005, 7.5.1, and 7.6.0 prior to 7.6.0.2 IFIX002 for SmartCloud Control Desk; and Maximo Asset Manage...
Ibm Change And Configuration Management Database 7.1
Ibm Change And Configuration Management Database 7.2
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management 7.6
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo For Energy Optimization 7.1
Ibm Maximo For Government 7.1
Ibm Maximo For Government 7.5
Ibm Maximo For Life Sciences 7.1
Ibm Maximo For Life Sciences 7.5
5.3
CVSSv3
CVE-2024-2244
REST service authentication anomaly with “valid username/no password” credential combination for batch job processing resulting in successful service invocation. The anomaly doesn’t exist with other credential combinations.
7.5
CVSSv3
CVE-2023-6711
Vulnerability exists in SCI IEC 60870-5-104 and HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Specially crafted messages sent to the mentioned components are not validated properly and can result in buffer overflow and as final consequence to a...
Hitachienergy Rtu500 Firmware
Hitachienergy Rtu500 Firmware 13.5.1.0
7.5
CVSSv3
CVE-2023-1514
A vulnerability exists in the component RTU500 Scripting interface. When a client connects to a server using TLS, the server presents a certificate. This certificate links a public key to the identity of the service and is signed by a Certification Authority (CA), allowing the cl...
Hitachienergy Rtu500 Scripting Interface 1.0.1.30
Hitachienergy Rtu500 Scripting Interface 1.0.2
Hitachienergy Rtu500 Scripting Interface 1.1.1
6.7
CVSSv3
CVE-2016-5848
Siemens SICAM PAS prior to 8.07 does not properly restrict password data in the database, which makes it easier for local users to calculate passwords by leveraging unspecified database privileges.
Siemens Sicam Pas/pqs
1 Article
8.8
CVSSv3
CVE-2024-3980
The MicroSCADA Pro/X SYS600 product allows an authenticated user input to control or influence paths or file names that are used in filesystem operations. If exploited the vulnerability allows the malicious user to access or modify system files or other files that are critical to...
Hitachienergy Microscada Pro Sys600 9.4
Hitachienergy Microscada X Sys600
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
XML external entity
remote code execution
CVE-2024-44136
CVE-2025-21321
CVE-2024-41454
CVE-2024-55503
insecure direct object reference
CVE-2025-20088
CVE-2024-44243
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »