VYPR

MicroSCADA X SYS600

by MicroSCADA

CVEs (2)

  • CVE-2024-3982HigAug 27, 2024
    risk 0.53cvss 8.2epss 0.00

    An attacker with local access to machine where MicroSCADA X SYS600 is installed, could enable the session logging supporting the product and try to exploit a session hijacking of an already established session. By default, the session logging level is not enabled and only users…

  • CVE-2025-39205MedJun 24, 2025
    risk 0.42cvss 6.5epss 0.00

    A vulnerability exists in the IEC 61850 in MicroSCADA X SYS600 product. The certificate validation of the TLS protocol allows remote Man-in-the-Middle attack due to missing proper validation.