CVE-2022-3388
Input Validation Vulnerability in Hitachi Energy’s MicroSCADA Pro/X SYS600 Products
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
An input validation vulnerability exists in the Monitor Pro interface of MicroSCADA
Pro and MicroSCADA X SYS600. An authenticated user can launch an administrator level remote code execution irrespective of the authenticated user's role.
Existe una vulnerabilidad de validación de entrada en la interfaz Monitor Pro de MicroSCADA Pro y MicroSCADA X SYS600. Un usuario autenticado puede iniciar una ejecución remota de código a nivel de administrador independientemente de la función del usuario autenticado.
An input validation vulnerability exists in the Monitor Pro interface of MicroSCADA Pro and MicroSCADA X SYS600. An authenticated user can launch an administrator level remote code execution irrespective of the authenticated user's role.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-09-30 CVE Reserved
- 2022-11-21 CVE Published
- 2024-08-03 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
- CAPEC-23: File Content Injection
References (1)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Hitachienergy Search vendor "Hitachienergy" | Microscada Pro Sys600 Search vendor "Hitachienergy" for product "Microscada Pro Sys600" | 9.0 Search vendor "Hitachienergy" for product "Microscada Pro Sys600" and version "9.0" | - |
Affected
| ||||||
Hitachienergy Search vendor "Hitachienergy" | Microscada Pro Sys600 Search vendor "Hitachienergy" for product "Microscada Pro Sys600" | 9.1 Search vendor "Hitachienergy" for product "Microscada Pro Sys600" and version "9.1" | - |
Affected
| ||||||
Hitachienergy Search vendor "Hitachienergy" | Microscada Pro Sys600 Search vendor "Hitachienergy" for product "Microscada Pro Sys600" | 9.2 Search vendor "Hitachienergy" for product "Microscada Pro Sys600" and version "9.2" | - |
Affected
| ||||||
Hitachienergy Search vendor "Hitachienergy" | Microscada Pro Sys600 Search vendor "Hitachienergy" for product "Microscada Pro Sys600" | 9.3 Search vendor "Hitachienergy" for product "Microscada Pro Sys600" and version "9.3" | - |
Affected
| ||||||
Hitachienergy Search vendor "Hitachienergy" | Microscada Pro Sys600 Search vendor "Hitachienergy" for product "Microscada Pro Sys600" | 9.4 Search vendor "Hitachienergy" for product "Microscada Pro Sys600" and version "9.4" | - |
Affected
| ||||||
Hitachienergy Search vendor "Hitachienergy" | Microscada X Sys600 Search vendor "Hitachienergy" for product "Microscada X Sys600" | 10 Search vendor "Hitachienergy" for product "Microscada X Sys600" and version "10" | - |
Affected
| ||||||
Hitachienergy Search vendor "Hitachienergy" | Microscada X Sys600 Search vendor "Hitachienergy" for product "Microscada X Sys600" | 10.1 Search vendor "Hitachienergy" for product "Microscada X Sys600" and version "10.1" | - |
Affected
| ||||||
Hitachienergy Search vendor "Hitachienergy" | Microscada X Sys600 Search vendor "Hitachienergy" for product "Microscada X Sys600" | 10.1.1 Search vendor "Hitachienergy" for product "Microscada X Sys600" and version "10.1.1" | - |
Affected
| ||||||
Hitachienergy Search vendor "Hitachienergy" | Microscada X Sys600 Search vendor "Hitachienergy" for product "Microscada X Sys600" | 10.2 Search vendor "Hitachienergy" for product "Microscada X Sys600" and version "10.2" | - |
Affected
| ||||||
Hitachienergy Search vendor "Hitachienergy" | Microscada X Sys600 Search vendor "Hitachienergy" for product "Microscada X Sys600" | 10.2.1 Search vendor "Hitachienergy" for product "Microscada X Sys600" and version "10.2.1" | - |
Affected
| ||||||
Hitachienergy Search vendor "Hitachienergy" | Microscada X Sys600 Search vendor "Hitachienergy" for product "Microscada X Sys600" | 10.3 Search vendor "Hitachienergy" for product "Microscada X Sys600" and version "10.3" | - |
Affected
| ||||||
Hitachienergy Search vendor "Hitachienergy" | Microscada X Sys600 Search vendor "Hitachienergy" for product "Microscada X Sys600" | 10.3.1 Search vendor "Hitachienergy" for product "Microscada X Sys600" and version "10.3.1" | - |
Affected
| ||||||
Hitachienergy Search vendor "Hitachienergy" | Microscada X Sys600 Search vendor "Hitachienergy" for product "Microscada X Sys600" | 10.4 Search vendor "Hitachienergy" for product "Microscada X Sys600" and version "10.4" | - |
Affected
|