The MicroSCADA Pro/X SYS600 product allows an authenticated user input to control or influence paths or file names that are used in filesystem operations. If exploited the vulnerability allows the attacker to access or modify system files or other files that are critical to the application.
The application does not sufficiently validate input data supplied by an authenticated user, which controls paths or file names used in file system operations (CWE-22). An attacker can craft input containing path traversal sequences (e.g., '../') to escape the allowed directory. As a result, access to arbitrary operating system files or application configuration files is possible.
An attacker with access to a user account can read or modify system files and files critical to SCADA application operation, which may result in confidentiality breach, data integrity violation, and in OT/ICS environments potentially disrupt industrial processes.
Apply patches available from the manufacturer according to references (https://publisher.hitachienergy.com/preview?DocumentID=8DBD000160&LanguageCode=en&DocumentPartId=&Action=Launch). It is also recommended to restrict system access exclusively to trusted users and monitor operations on system files.
Hitachi Energy MicroSCADA Pro SYS600 and MicroSCADA X SYS600 — specific versions indicated in manufacturer references
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HHitachienergy Microscada Pro Sys600
APPHitachienergy9.4Hitachienergy Microscada X Sys600
APPHitachienergy10.0 – 10.6 (bez)
Related vulnerabilities
Injection w walidacji zapytań MicroSCADA Pro/X SYS600 — nieautoryzowany zapis danych
ABB MicroSCADA Pro SYS600 version 9.3 suffers from an instance of CWE-306: Missing Authentication for Critical...
A vulnerability exists in the IEC 61850 of the MicroSCADA X SYS600 product. An IEC 61850-8 crafted message con...
A vulnerability exists in in the Monitor Pro interface of the MicroSCADA X SYS600 product. An authenticated us...
A vulnerability exists in the Web interface of the MicroSCADA X SYS600 product. The filtering query in the Web...