Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

Hitachi Energy NSD570 Teleprotection Equipment

Version 1.0

MAJOR_MINOR 2 CVEs

Known Vulnerabilities

CVE-2024-9929

A vulnerability exists in NSD570 that allows any authenticated user to access all device logs disclosing login information with timestamps.

MEDIUM CVSS 4.3 Published Nov 26, 2024

CVE-2024-9928

A vulnerability exists in NSD570 login panel that does not restrict excessive authentication attempts. If exploited, this could cause account takeover and unauthorized access to the system when an attacker conducts brute-force attacks against the equipment login. Note that the system supports only one concurrent session and implements a delay of more than a second between failed login attempts making it difficult to automate the attacks.

MEDIUM CVSS 5.3 Published Nov 26, 2024