ICS: Hitachi Energy MicroSCADA Vulnerability

Severity

High

Analysis Summary

CVE-2024-4872

A vulnerability exists in the query validation of the MicroSCADA Pro/X SYS600 product. If exploited this could allow an authenticated attacker to inject code towards persistent data. Note that to successfully exploit this vulnerability an attacker must have a valid credential.

Impact

Gain Access

Indicators of Compromise

CVE

CVE-2024-4872

Affected Vendors

Hitachi

Affected Products

Hitachi Energy MicroSCADA SYS600 - 10.0

Remediation

Refer to Hitachi Energy Website for patch, upgrade, or suggested workaround information.

Hitachi Energy Website

Multiple Microsoft Azure Vulnerabilities

Gafgyt aka Bashlite Malware – Active IOCs

ICS: Hitachi Energy MicroSCADA Vulnerability

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan